CVE-2026-27855

EPSS 0.03%
Veröffentlicht 27.03.2026 08:10:18
Zuletzt bearbeitet 29.04.2026 19:23:00
Quelle security@open-xchange.com
CVE-Watchlists
Login
Unerledigt
Login

Dovecot OTP authentication is vulnerable to replay attack under specific conditions. If auth cache is enabled, and username is altered in passdb, then OTP credentials can be cached so that same OTP reply is valid. An attacker able to observe an OTP exchange is able to log in as the user. If authentication happens over unsecure connection, switch to SCRAM protocol. Alternatively ensure the communcations are secured, and if possible switch to OAUTH2 or SCRAM. No publicly available exploits are known.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 2 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dovecot ≫ Dovecot Version < 2.4.3

Open-xchange ≫ Dovecot SwEditionpro Version <= 2.3.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.077

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
security@open-xchange.com	6.8	1.6	5.2	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-294 Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

https://documentation.open-xchange.com/dovecot/security/advisories/csaf/2026/oxdc-adv-2026-0001.json

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-27855

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-27855

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-27855

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-27855