CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14230

In the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP before 3.0.4, an off-by-one error in prefix calculation for the LIST command caused use of uninitialized memory, which might allow remote attackers to obtain sensitive information or cause a denial of service (daemon crash) via a 'LIST "" "Other Users"' command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.0%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

Products affected by CVE-2017-14230

Cyrus » Imap » Version: 1.2

cpe:2.3:a:cyrus:imap:1.2
Cyrus » Imap » Version: 1.3

cpe:2.3:a:cyrus:imap:1.3
Cyrus » Imap » Version: 1.4

cpe:2.3:a:cyrus:imap:1.4
Cyrus » Imap » Version: 1.5

cpe:2.3:a:cyrus:imap:1.5
Cyrus » Imap » Version: 1.5.10

cpe:2.3:a:cyrus:imap:1.5.10
Cyrus » Imap » Version: 1.5.11

cpe:2.3:a:cyrus:imap:1.5.11
Cyrus » Imap » Version: 1.5.14

cpe:2.3:a:cyrus:imap:1.5.14
Cyrus » Imap » Version: 1.5.19

cpe:2.3:a:cyrus:imap:1.5.19
Cyrus » Imap » Version: 1.5.2

cpe:2.3:a:cyrus:imap:1.5.2
Cyrus » Imap » Version: 1.5.24

cpe:2.3:a:cyrus:imap:1.5.24
Cyrus » Imap » Version: 1.6.10

cpe:2.3:a:cyrus:imap:1.6.10
Cyrus » Imap » Version: 1.6.13

cpe:2.3:a:cyrus:imap:1.6.13
Cyrus » Imap » Version: 1.6.16

cpe:2.3:a:cyrus:imap:1.6.16
Cyrus » Imap » Version: 1.6.19

cpe:2.3:a:cyrus:imap:1.6.19
Cyrus » Imap » Version: 1.6.20

cpe:2.3:a:cyrus:imap:1.6.20
Cyrus » Imap » Version: 2.0

cpe:2.3:a:cyrus:imap:2.0
Cyrus » Imap » Version: 2.0.11

cpe:2.3:a:cyrus:imap:2.0.11
Cyrus » Imap » Version: 2.0.12

cpe:2.3:a:cyrus:imap:2.0.12
Cyrus » Imap » Version: 2.0.13

cpe:2.3:a:cyrus:imap:2.0.13
Cyrus » Imap » Version: 2.0.14

cpe:2.3:a:cyrus:imap:2.0.14
Cyrus » Imap » Version: 2.0.15

cpe:2.3:a:cyrus:imap:2.0.15
Cyrus » Imap » Version: 2.0.16

cpe:2.3:a:cyrus:imap:2.0.16
Cyrus » Imap » Version: 2.0.3

cpe:2.3:a:cyrus:imap:2.0.3
Cyrus » Imap » Version: 2.0.4

cpe:2.3:a:cyrus:imap:2.0.4
Cyrus » Imap » Version: 2.0.5

cpe:2.3:a:cyrus:imap:2.0.5
Cyrus » Imap » Version: 2.0.6

cpe:2.3:a:cyrus:imap:2.0.6
Cyrus » Imap » Version: 2.0.7

cpe:2.3:a:cyrus:imap:2.0.7
Cyrus » Imap » Version: 2.0.8

cpe:2.3:a:cyrus:imap:2.0.8
Cyrus » Imap » Version: 2.0.9

cpe:2.3:a:cyrus:imap:2.0.9
Cyrus » Imap » Version: 2.1.0

cpe:2.3:a:cyrus:imap:2.1.0
Cyrus » Imap » Version: 2.1.1

cpe:2.3:a:cyrus:imap:2.1.1
Cyrus » Imap » Version: 2.1.10

cpe:2.3:a:cyrus:imap:2.1.10
Cyrus » Imap » Version: 2.1.11

cpe:2.3:a:cyrus:imap:2.1.11
Cyrus » Imap » Version: 2.1.12

cpe:2.3:a:cyrus:imap:2.1.12
Cyrus » Imap » Version: 2.1.13

cpe:2.3:a:cyrus:imap:2.1.13
Cyrus » Imap » Version: 2.1.14

cpe:2.3:a:cyrus:imap:2.1.14
Cyrus » Imap » Version: 2.1.2

cpe:2.3:a:cyrus:imap:2.1.2
Cyrus » Imap » Version: 2.1.3

cpe:2.3:a:cyrus:imap:2.1.3
Cyrus » Imap » Version: 2.1.4

cpe:2.3:a:cyrus:imap:2.1.4
Cyrus » Imap » Version: 2.1.5

cpe:2.3:a:cyrus:imap:2.1.5
Cyrus » Imap » Version: 2.1.6

cpe:2.3:a:cyrus:imap:2.1.6
Cyrus » Imap » Version: 2.1.7

cpe:2.3:a:cyrus:imap:2.1.7
Cyrus » Imap » Version: 2.1.8

cpe:2.3:a:cyrus:imap:2.1.8
Cyrus » Imap » Version: 2.1.9

cpe:2.3:a:cyrus:imap:2.1.9
Cyrus » Imap » Version: 2.2.0

cpe:2.3:a:cyrus:imap:2.2.0
Cyrus » Imap » Version: 2.2.1

cpe:2.3:a:cyrus:imap:2.2.1
Cyrus » Imap » Version: 2.2.10

cpe:2.3:a:cyrus:imap:2.2.10
Cyrus » Imap » Version: 2.2.11

cpe:2.3:a:cyrus:imap:2.2.11
Cyrus » Imap » Version: 2.2.12

cpe:2.3:a:cyrus:imap:2.2.12
Cyrus » Imap » Version: 2.2.13

cpe:2.3:a:cyrus:imap:2.2.13
Cyrus » Imap » Version: 2.2.2

cpe:2.3:a:cyrus:imap:2.2.2
Cyrus » Imap » Version: 2.2.3

cpe:2.3:a:cyrus:imap:2.2.3
Cyrus » Imap » Version: 2.2.4

cpe:2.3:a:cyrus:imap:2.2.4
Cyrus » Imap » Version: 2.2.5

cpe:2.3:a:cyrus:imap:2.2.5
Cyrus » Imap » Version: 2.2.6

cpe:2.3:a:cyrus:imap:2.2.6
Cyrus » Imap » Version: 2.2.7

cpe:2.3:a:cyrus:imap:2.2.7
Cyrus » Imap » Version: 2.2.8

cpe:2.3:a:cyrus:imap:2.2.8
Cyrus » Imap » Version: 2.2.9

cpe:2.3:a:cyrus:imap:2.2.9
Cyrus » Imap » Version: 2.3.0

cpe:2.3:a:cyrus:imap:2.3.0
Cyrus » Imap » Version: 2.3.1

cpe:2.3:a:cyrus:imap:2.3.1
Cyrus » Imap » Version: 2.3.10

cpe:2.3:a:cyrus:imap:2.3.10
Cyrus » Imap » Version: 2.3.11

cpe:2.3:a:cyrus:imap:2.3.11
Cyrus » Imap » Version: 2.3.12

cpe:2.3:a:cyrus:imap:2.3.12
Cyrus » Imap » Version: 2.3.13

cpe:2.3:a:cyrus:imap:2.3.13
Cyrus » Imap » Version: 2.3.14

cpe:2.3:a:cyrus:imap:2.3.14
Cyrus » Imap » Version: 2.3.15

cpe:2.3:a:cyrus:imap:2.3.15
Cyrus » Imap » Version: 2.3.16

cpe:2.3:a:cyrus:imap:2.3.16
Cyrus » Imap » Version: 2.3.17

cpe:2.3:a:cyrus:imap:2.3.17
Cyrus » Imap » Version: 2.3.18

cpe:2.3:a:cyrus:imap:2.3.18
Cyrus » Imap » Version: 2.3.19

cpe:2.3:a:cyrus:imap:2.3.19
Cyrus » Imap » Version: 2.3.2

cpe:2.3:a:cyrus:imap:2.3.2
Cyrus » Imap » Version: 2.3.20

cpe:2.3:a:cyrus:imap:2.3.20
Cyrus » Imap » Version: 2.3.3

cpe:2.3:a:cyrus:imap:2.3.3
Cyrus » Imap » Version: 2.3.4

cpe:2.3:a:cyrus:imap:2.3.4
Cyrus » Imap » Version: 2.3.5

cpe:2.3:a:cyrus:imap:2.3.5
Cyrus » Imap » Version: 2.3.6

cpe:2.3:a:cyrus:imap:2.3.6
Cyrus » Imap » Version: 2.3.7

cpe:2.3:a:cyrus:imap:2.3.7
Cyrus » Imap » Version: 2.3.8

cpe:2.3:a:cyrus:imap:2.3.8
Cyrus » Imap » Version: 2.3.9

cpe:2.3:a:cyrus:imap:2.3.9
Cyrus » Imap » Version: 2.4.0

cpe:2.3:a:cyrus:imap:2.4.0
Cyrus » Imap » Version: 2.4.1

cpe:2.3:a:cyrus:imap:2.4.1
Cyrus » Imap » Version: 2.4.10

cpe:2.3:a:cyrus:imap:2.4.10
Cyrus » Imap » Version: 2.4.11

cpe:2.3:a:cyrus:imap:2.4.11
Cyrus » Imap » Version: 2.4.12

cpe:2.3:a:cyrus:imap:2.4.12
Cyrus » Imap » Version: 2.4.13

cpe:2.3:a:cyrus:imap:2.4.13
Cyrus » Imap » Version: 2.4.14

cpe:2.3:a:cyrus:imap:2.4.14
Cyrus » Imap » Version: 2.4.15

cpe:2.3:a:cyrus:imap:2.4.15
Cyrus » Imap » Version: 2.4.16

cpe:2.3:a:cyrus:imap:2.4.16
Cyrus » Imap » Version: 2.4.17

cpe:2.3:a:cyrus:imap:2.4.17
Cyrus » Imap » Version: 2.4.18

cpe:2.3:a:cyrus:imap:2.4.18
Cyrus » Imap » Version: 2.4.19

cpe:2.3:a:cyrus:imap:2.4.19
Cyrus » Imap » Version: 2.4.2

cpe:2.3:a:cyrus:imap:2.4.2
Cyrus » Imap » Version: 2.4.20

cpe:2.3:a:cyrus:imap:2.4.20
Cyrus » Imap » Version: 2.4.21

cpe:2.3:a:cyrus:imap:2.4.21
Cyrus » Imap » Version: 2.4.22

cpe:2.3:a:cyrus:imap:2.4.22
Cyrus » Imap » Version: 2.4.3

cpe:2.3:a:cyrus:imap:2.4.3
Cyrus » Imap » Version: 2.4.4

cpe:2.3:a:cyrus:imap:2.4.4
Cyrus » Imap » Version: 2.4.5

cpe:2.3:a:cyrus:imap:2.4.5
Cyrus » Imap » Version: 2.4.6

cpe:2.3:a:cyrus:imap:2.4.6
Cyrus » Imap » Version: 2.4.7

cpe:2.3:a:cyrus:imap:2.4.7
Cyrus » Imap » Version: 2.4.8

cpe:2.3:a:cyrus:imap:2.4.8
Cyrus » Imap » Version: 2.4.9

cpe:2.3:a:cyrus:imap:2.4.9
Cyrus » Imap » Version: 2.5.0

cpe:2.3:a:cyrus:imap:2.5.0
Cyrus » Imap » Version: 2.5.1

cpe:2.3:a:cyrus:imap:2.5.1
Cyrus » Imap » Version: 2.5.10

cpe:2.3:a:cyrus:imap:2.5.10
Cyrus » Imap » Version: 2.5.11

cpe:2.3:a:cyrus:imap:2.5.11
Cyrus » Imap » Version: 2.5.12

cpe:2.3:a:cyrus:imap:2.5.12
Cyrus » Imap » Version: 2.5.13

cpe:2.3:a:cyrus:imap:2.5.13
Cyrus » Imap » Version: 2.5.14

cpe:2.3:a:cyrus:imap:2.5.14
Cyrus » Imap » Version: 2.5.15

cpe:2.3:a:cyrus:imap:2.5.15
Cyrus » Imap » Version: 2.5.16

cpe:2.3:a:cyrus:imap:2.5.16
Cyrus » Imap » Version: 2.5.17

cpe:2.3:a:cyrus:imap:2.5.17
Cyrus » Imap » Version: 2.5.2

cpe:2.3:a:cyrus:imap:2.5.2
Cyrus » Imap » Version: 2.5.3

cpe:2.3:a:cyrus:imap:2.5.3
Cyrus » Imap » Version: 2.5.4

cpe:2.3:a:cyrus:imap:2.5.4
Cyrus » Imap » Version: 2.5.5

cpe:2.3:a:cyrus:imap:2.5.5
Cyrus » Imap » Version: 2.5.6

cpe:2.3:a:cyrus:imap:2.5.6
Cyrus » Imap » Version: 2.5.7

cpe:2.3:a:cyrus:imap:2.5.7
Cyrus » Imap » Version: 2.5.8

cpe:2.3:a:cyrus:imap:2.5.8
Cyrus » Imap » Version: 2.5.9

cpe:2.3:a:cyrus:imap:2.5.9
Cyrus » Imap » Version: 3.0.0

cpe:2.3:a:cyrus:imap:3.0.0
Cyrus » Imap » Version: 3.0.1

cpe:2.3:a:cyrus:imap:3.0.1
Cyrus » Imap » Version: 3.0.2

cpe:2.3:a:cyrus:imap:3.0.2
Cyrus » Imap » Version: 3.0.3

cpe:2.3:a:cyrus:imap:3.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14230

Products

Pricing

Contact Us