Skip to main content

Imapsync

3 CVEs product

Monthly

CVE-2023-34204 MEDIUM POC This Month

imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Imapsync
NVD GitHub
CVSS 3.1
6.5
EPSS
0.6%
CVE-2014-2014 MEDIUM PATCH This Month

imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Authentication Bypass Imapsync
NVD GitHub VulDB
CVSS 2.0
4.3
EPSS
0.4%
CVE-2013-4279 MEDIUM POC This Month

imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Imapsync
NVD VulDB
CVSS 2.0
5.0
EPSS
0.4%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Imapsync
NVD GitHub
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Authentication Bypass Imapsync
NVD GitHub VulDB
EPSS 0% CVSS 5.0
MEDIUM POC This Month

imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Imapsync
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy