Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alpine project alpine vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23553
Alpine is a scaffolding library in Java. Alpine prior to version 1.10.4 allows URL access filter bypass. This issue has been fixed in version 1.10.4. There are no known workarounds.
Alpine Project Alpine
7.5
CVSSv3
CVE-2020-14929
Alpine prior to 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do.
Alpine Project Alpine
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 8.0
5.9
CVSSv3
CVE-2021-46853
Alpine prior to 2.25 allows remote malicious users to cause a denial of service (application crash) when LIST or LSUB is sent before STARTTLS.
Alpine Project Alpine
5.9
CVSSv3
CVE-2021-38370
In Alpine prior to 2.25, untagged responses from an IMAP server are accepted before STARTTLS.
Alpine Project Alpine
5.5
CVSSv3
CVE-2021-29133
Lack of verification in haserl, a component of Alpine Linux Configuration Framework, prior to 0.9.36 allows local users to read the contents of any file on the filesystem.
Haserl Project Haserl
5.4
CVSSv3
CVE-2022-23554
Alpine is a scaffolding library in Java. Alpine prior to version 1.10.4 allows Authentication Filter bypass. The AuthenticationFilter relies on the request URI to evaluate if the user is accessing the swagger endpoint. By accessing a URL with a path such as /api/foo;%2fapi%2fswag...
Alpine Project Alpine
NA
CVE-2008-5005
Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and previous versions, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the...
University Of Washington Alpine 0.82
University Of Washington Alpine 0.999999
University Of Washington Alpine 0.98
University Of Washington Alpine 1.00
University Of Washington Alpine 1.10
University Of Washington Alpine 0.99
University Of Washington Alpine 0.81
University Of Washington Imap Toolkit 2003
University Of Washington Imap Toolkit 2005
University Of Washington Imap Toolkit 2002
University Of Washington Alpine 2.00
University Of Washington Imap Toolkit 2007c
University Of Washington Alpine 0.80
University Of Washington Alpine 0.99999
University Of Washington Alpine 0.999
University Of Washington Alpine 0.9999
University Of Washington Imap Toolkit 2006
University Of Washington Imap Toolkit 2004
University Of Washington Imap Toolkit 2007
University Of Washington Alpine 0.83
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started