Skip to main content

Maddy

3 CVEs product

Monthly

CVE-2023-27582 Go CRITICAL PATCH Act Now

maddy is a composable, all-in-one mail server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Maddy
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-24732 Go HIGH PATCH This Week

Maddy Mail Server is an open source SMTP compatible email server. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Maddy
NVD GitHub
CVSS 3.1
8.8
EPSS
0.4%
CVE-2021-42583 Go HIGH PATCH This Week

A Broken or Risky Cryptographic Algorithm exists in Max Mazurov Maddy before 0.5.2, which is an unnecessary risk that may result in the exposure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Maddy
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

maddy is a composable, all-in-one mail server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Maddy
NVD GitHub
EPSS 0% CVSS 8.8
HIGH PATCH This Week

Maddy Mail Server is an open source SMTP compatible email server. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Maddy
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

A Broken or Risky Cryptographic Algorithm exists in Max Mazurov Maddy before 0.5.2, which is an unnecessary risk that may result in the exposure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Maddy
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy