Alpine Project: >> Alpine >> 2.23 Security Vulnerabilities
Alpine before 2.25 allows remote attackers to cause a denial of service (application crash) when LIST or LSUB is sent before STARTTLS.
CVSS Score
5.9
EPSS Score
0.002
Published
2022-11-03
In Alpine before 2.25, untagged responses from an IMAP server are accepted before STARTTLS.
CVSS Score
5.9
EPSS Score
0.001
Published
2021-08-10