Denial of Service Vulnerability in Alpine Email Client
CVE-2021-46853

5.9MEDIUM

Key Information:

Vendor

Alpine Project

Status
Alpine
Vendor
CVE Published:
3 November 2022

What is CVE-2021-46853?

A critical security flaw in Alpine Email Client prior to version 2.25 allows remote attackers to exploit the application by sending LIST or LSUB commands before STARTTLS is initiated. This improper handling can result in a denial of service, causing the application to crash. Users and administrators are advised to update to the latest version to mitigate potential risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://nostarttls.secvuln.info/
https://bugs.gentoo.org/807613
https://security.gentoo.org/glsa/202301-07
vendor-advisory

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.