Skip to main content

Alpine

4 CVEs product

Monthly

CVE-2022-23554 Maven MEDIUM PATCH This Month

Alpine is a scaffolding library in Java. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Alpine
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-23553 Maven HIGH PATCH This Week

Alpine is a scaffolding library in Java. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Alpine
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%
CVE-2021-38370 MEDIUM POC This Month

In Alpine before 2.25, untagged responses from an IMAP server are accepted before STARTTLS. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Command Injection Alpine
NVD
CVSS 3.1
5.9
EPSS
1.6%
CVE-2020-14929 HIGH PATCH This Week

Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Alpine Fedora Debian Linux
NVD
CVSS 3.1
7.5
EPSS
1.8%
EPSS 1% CVSS 5.4
MEDIUM PATCH This Month

Alpine is a scaffolding library in Java. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Alpine
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Alpine is a scaffolding library in Java. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Alpine
NVD GitHub
EPSS 2% CVSS 5.9
MEDIUM POC This Month

In Alpine before 2.25, untagged responses from an IMAP server are accepted before STARTTLS. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Command Injection Alpine
NVD
EPSS 2% CVSS 7.5
HIGH PATCH This Week

Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Alpine Fedora +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy