Known Vulnerabilities for Imap by Cyrus
Listed below are 9 of the newest known vulnerabilities associated with "Imap" by "Cyrus".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-23506 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in imsoftware WP IMAP Auth... | Not Provided | 2025-01-22 | 2026-04-01 |
| CVE-2021-33582 | Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service (multiple-minute daemon hang) via input that is ... | 7.5 - HIGH | 2021-09-01 | 2023-11-07 |
| CVE-2021-32056 | Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1, allows remote authenticated users to bypass intended access restri... | 4.3 - MEDIUM | 2021-05-10 | 2023-11-07 |
| CVE-2019-19783 | An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If sieve script uploading ... | 6.5 - MEDIUM | 2019-12-16 | 2023-11-07 |
| CVE-2019-18928 | Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted i... | 9.8 - CRITICAL | 2019-11-15 | 2023-11-07 |
| CVE-2019-11356 | The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arb... | 9.8 - CRITICAL | 2019-06-03 | 2023-11-07 |
| CVE-2017-14230 | In the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP before 3.0.4, an off-by-one error in prefix calculation for... | 9.1 - CRITICAL | 2017-09-10 | 2017-09-21 |
| CVE-2015-8078 | Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attacke... | 7.5 - HIGH | 2015-12-03 | 2023-11-07 |
| CVE-2015-8077 | Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attacke... | 7.5 - HIGH | 2015-12-03 | 2023-11-07 |
| CVE-2015-8076 | The index_urlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remo... | 7.5 - HIGH | 2015-12-03 | 2018-10-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cyrus | Imap | 3.1.9 | All | All | All |
| Application | Cyrus | Imap | 3.1.8 | All | All | All |
| Application | Cyrus | Imap | 3.1.7 | All | All | All |
| Application | Cyrus | Imap | 3.1.6 | All | All | All |
| Application | Cyrus | Imap | 3.1.5 | All | All | All |
| Application | Cyrus | Imap | 3.1.4 | All | All | All |
| Application | Cyrus | Imap | 3.1.3 | All | All | All |
| Application | Cyrus | Imap | 3.1.2 | All | All | All |
| Application | Cyrus | Imap | 3.1.1 | All | All | All |
| Application | Cyrus | Imap | 3.1.0 | All | All | All |
| Application | Cyrus | Imap | 3.0.9 | All | All | All |
| Application | Cyrus | Imap | 3.0.8 | All | All | All |
| Application | Cyrus | Imap | 3.0.7 | All | All | All |
| Application | Cyrus | Imap | 3.0.6 | All | All | All |
| Application | Cyrus | Imap | 3.0.5 | All | All | All |
| Application | Cyrus | Imap | 3.0.4 | All | All | All |
| Application | Cyrus | Imap | 3.0.3 | All | All | All |
| Application | Cyrus | Imap | 3.0.2 | All | All | All |
| Application | Cyrus | Imap | 3.0.13 | All | All | All |
| Application | Cyrus | Imap | 3.0.12 | All | All | All |