5
CVE-2013-7176
- EPSS 0.84%
- Published 01.02.2014 15:55:04
- Last modified 11.04.2025 00:51:21
- Source cret@cert.org
- CVE-Watchlists
- Open
Loginconfig/filter.d/postfix.conf in the postfix filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression.
Data is provided by the National Vulnerability Database (NVD)
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.84% | 0.726 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.