Netqmail

netqmail

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Netqmail

netqmail

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-3812 3Canonical DebianNetqmail 3Debian Linux NetqmailUbuntu Linux Nov 21, 2024 May 26, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A local attacker can test for the existence of files and directories anywhere in the filesystem because qmail-verify runs as root...Show more qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A local attacker can test for the existence of files and directories anywhere in the filesystem because qmail-verify runs as root and tests for the existence of files in the attacker's home directory, without dropping its privileges first.Show less
CVE-2020-3811 3Canonical DebianNetqmail 3Debian Linux NetqmailUbuntu Linux Nov 21, 2024 May 26, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 qmail-verify as used in netqmail 1.06 is prone to a mail-address verification bypass vulnerability.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-3812

3Canonical

DebianNetqmail

3Debian Linux

NetqmailUbuntu Linux

Nov 21, 2024

May 26, 2020

N/A· v4

5.5 MEDIUM· v3

2.1 LOW· v2

qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A local attacker can test for the existence of files and directories anywhere in the filesystem because qmail-verify runs as root and tests for the existence of files in the attacker's home directory, without dropping its privileges first.Show less

CVE-2020-3811