CVE-2024-34055

Published June 5th, 2024

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command.

cyrusimap/cyrus-imapd

Cyrus IMAP is an email, contacts and calendar server

GitHub

632