6.4

CVE-2010-3304

The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DovecotDovecot Version1.2.0
DovecotDovecot Version1.2.1
DovecotDovecot Version1.2.2
DovecotDovecot Version1.2.3
DovecotDovecot Version1.2.4
DovecotDovecot Version1.2.5
DovecotDovecot Version1.2.6
DovecotDovecot Version1.2.7
DovecotDovecot Version1.2.8
DovecotDovecot Version1.2.9
DovecotDovecot Version1.2.10
DovecotDovecot Version1.2.11
DovecotDovecot Version1.2.12
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.71% 0.806
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:P/I:P/A:N