Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2023-29323

Published: 04/04/2023 Updated: 19/04/2024
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Openbsd

Vulnerability Summary

ascii_load_sockaddr in smtpd in OpenBSD prior to 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable prior to 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address.

Vulnerable Product Search on Vulmon Subscribe to Product

openbsd openbsd 7.2

opensmtpd opensmtpd

openbsd openbsd 7.1

Vendor Advisories

Debian CVElist Bug Report Logs: opensmtpd: CVE-2023-29323
Debian Bug report logs - #1034178 opensmtpd: CVE-2023-29323 Package: src:opensmtpd; Maintainer for src:opensmtpd is Ryan Kavanagh <rak@debianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Mon, 10 Apr 2023 17:39:02 UTC Severity: important Tags: security, upstream Reply or subscribe to this bug To ...

References

NVD-CWE-noinfohttps://ftp.openbsd.org/pub/OpenBSD/patches/7.2/common/020_smtpd.patch.sighttps://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/envelope.c.diff?r1=1.50&r2=1.51&f=hhttps://ftp.openbsd.org/pub/OpenBSD/patches/7.1/common/024_smtpd.patch.sighttps://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/envelope.c.diff?r1=1.50&r2=1.50.4.1&f=hhttps://github.com/OpenSMTPD/OpenSMTPD/commit/41d0eae481f538956b1f1fbadfb535043454061fhttps://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/envelope.c.diff?r1=1.49&r2=1.49.4.1&f=hhttps://github.com/openbsd/src/commit/f748277ed1fc7065ae8998d61ed78b9ab1e55faehttps://security.netapp.com/advisory/ntap-20230526-0006/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZBNQBHCM6PIOUR6I5GEQS35XYT2NX6T/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034178https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook