Filtered by vendor Alpine Project
Subscribe
Search
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-38370 | 1 Alpine Project | 1 Alpine | 2021-08-20 | 4.3 MEDIUM | 5.9 MEDIUM |
| In Alpine through 2.24, untagged responses from an IMAP server are accepted before STARTTLS. | |||||
| CVE-2020-14929 | 1 Alpine Project | 1 Alpine | 2020-07-03 | 5.0 MEDIUM | 7.5 HIGH |
| Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do. | |||||