OpenDMARC up to and including 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO field is inconsistent with the MAIL FROM field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
trusteddomain opendmarc |
||
trusteddomain opendmarc 1.4.0 |
||
pypolicyd-spf_project pypolicyd-spf 2.0.2 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |