CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Carnegie Mellon University 1Cyrus Sasl Apr 23, 2026 May 15, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via strings that are used as input to the sasl...Show more |
1Carnegie Mellon University 1Cyrus Sasl Apr 16, 2026 Dec 19, 2000 N/A· v4 N/A· v3 4.6 MEDIUM· v2 cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. |