Security Advisory

CVE-2020-24386

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-04 16:25:43

Last updated 2024-08-04 15:12:08

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via attacker-controlled parameters, leading to access to other users email messages (and path disclosure).

← Browse all CVEs View on cve.org ↗