Is Redhat affected by CVE-2026-0394?

Organizations using When dovecot should be aware of moderate risk from CVE-2026-0394, a path traversal vulnerability rated CVSS 5.3. This could allow unauthorized file access. Organizations should apply vendor updates when available and monitor for exploitation.

CVE-2026-0394

EUVD-2026-16559 MEDIUM

2026-03-27 OX

5.3

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Lifecycle Timeline

Patch Released

Mar 31, 2026 - 13:49 nvd

Patch available

Analysis Generated

Mar 27, 2026 - 08:30 vuln.today

EUVD ID Assigned

Mar 27, 2026 - 08:30 euvd

EUVD-2026-16559

CVE Published

Mar 27, 2026 - 08:10 nvd

MEDIUM 5.3

Description

When dovecot has been configured to use per-domain passwd files, and they are placed one path component above /etc, or slash has been added to allowed characters, path traversal can happen if the domain component is directory partial. This allows inadvertently reading /etc/passwd (or some other path which ends with passwd). If this file contains passwords, it can be used to authenticate wrongly, or if this is userdb, it can unexpectly make system users appear valid users. Upgrade to fixed version, or use different authentication scheme that does not rely on paths. Alternatively you can also ensure that the per-domain passwd files are in some other location, such as /etc/dovecot/auth/%d. No publicly available exploits are known.

Analysis

Path traversal in OX Dovecot Pro allows unauthenticated remote attackers to read arbitrary files such as /etc/passwd when per-domain passwd files are misconfigured above /etc or when slash characters are added to the domain path component. Successful exploitation can expose system authentication data or make system users appear as valid mail users, leading to unauthorized access. …

Remediation

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Review file handling controls.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +26

POC: 0

Vendor Status

Ubuntu

Priority: Medium

dovecot

Release	Status	Version
trusty	needed	-
xenial	needed	-
bionic	needed	-
focal	needed	-
jammy	needed	-
noble	needed	-
questing	not-affected	2.4.0
upstream	released	2.4.0

Debian

dovecot

Release	Status	Fixed Version	Urgency
bullseye	vulnerable	1:2.3.13+dfsg1-2+deb11u1	-
bullseye (security)	vulnerable	1:2.3.13+dfsg1-2+deb11u2	-
bookworm, bookworm (security)	vulnerable	1:2.3.19.1+dfsg1-2.1+deb12u1	-
trixie	vulnerable	1:2.4.1+dfsg1-6+deb13u3	-
trixie (security)	vulnerable	1:2.4.1+dfsg1-6+deb13u1	-
forky, sid	vulnerable	1:2.4.2+dfsg1-4	-
(unstable)	fixed	(unfixed)	-

CVE-2026-0394 vulnerability details – vuln.today

Back

CVE-2026-0394

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Vendor Status

Ubuntu

Debian

Share

CVE-2026-0394

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Vendor Status

Ubuntu

Debian

Share

External POC / Exploit Code