Vulnerabilities > CVE-2020-15917

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

claws-mail

fedoraproject

opensuse

critical

NVD

Published: 2020-07-23

Updated: 2024-11-21

Summary

common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled.

Vulnerable Configurations

Part	Description	Count
Application	Claws-Mail Claws Mail Claws Mail 1.9.6 Claws Mail Claws Mail 1.9.9 Claws Mail Claws Mail 1.9.11 Claws Mail Claws Mail 1.9.12 Claws Mail Claws Mail 1.9.13 Claws Mail Claws Mail 1.9.14 Claws Mail Claws Mail 1.9.15 Claws Mail Claws Mail 1.9.99 Claws Mail Claws Mail 1.9.100 Claws Mail Claws Mail 2.0.0 Claws Mail Claws Mail 2.1.0 Claws Mail Claws Mail 2.1.1 Claws Mail Claws Mail 2.2.0 Claws Mail Claws Mail 2.2.1 Claws Mail Claws Mail 2.2.2 Claws Mail Claws Mail 2.2.3 Claws Mail Claws Mail 2.3.0 Claws Mail Claws Mail 2.3.1 Claws Mail Claws Mail 2.4.0 Claws Mail Claws Mail 2.5.0 Claws Mail Claws Mail 2.5.1 Claws Mail Claws Mail 2.5.2 Claws Mail Claws Mail 2.5.3 Claws Mail Claws Mail 2.5.4 Claws Mail Claws Mail 2.5.5 Claws Mail Claws Mail 2.5.6 Claws Mail Claws Mail 2.6.0 Claws Mail Claws Mail 2.6.1 Claws Mail Claws Mail 2.7.0 Claws Mail Claws Mail 2.7.1 Claws Mail Claws Mail 2.7.2 Claws Mail Claws Mail 2.8.0 Claws Mail Claws Mail 2.8.1 Claws Mail Claws Mail 2.9.0 Claws Mail Claws Mail 2.9.1 Claws Mail Claws Mail 2.9.2 Claws Mail Claws Mail 2.10.0 Claws Mail Claws Mail 3.3.0 Claws Mail Claws Mail 3.3.1 Claws Mail Claws Mail 3.4.0 Claws Mail Claws Mail 3.5.0 Claws Mail Claws Mail 3.6.0 Claws Mail Claws Mail 3.6.1 Claws Mail Claws Mail 3.7.0 Claws Mail Claws Mail 3.7.1 Claws Mail Claws Mail 3.7.2 Claws Mail Claws Mail 3.7.3 Claws Mail Claws Mail 3.7.4 Claws Mail Claws Mail 3.7.5 Claws Mail Claws Mail 3.7.6 Claws Mail Claws Mail 3.7.7 Claws Mail Claws Mail 3.7.8 Claws Mail Claws Mail 3.7.9 Claws Mail Claws Mail 3.7.10 Claws Mail Claws Mail 3.8.0 Claws Mail Claws Mail 3.8.1 Claws Mail Claws Mail 3.9.3 Claws Mail Claws Mail 3.13.0 Claws Mail Claws Mail 3.13.1 Claws Mail Claws Mail 3.13.2 Claws Mail Claws Mail 3.14.0 Claws Mail Claws Mail 3.14.1 Claws Mail Claws Mail 3.15.0 Claws Mail Claws Mail 3.15.1 Claws Mail Claws Mail 3.16.0 Claws Mail Claws Mail 3.17.0 Claws Mail Claws Mail 3.17.1 Claws Mail Claws Mail 3.17.2 Claws Mail Claws Mail 3.17.3 Claws Mail Claws Mail 3.17.4 Claws Mail Claws Mail 3.17.5 Claws Mail Claws Mail 3.17.6	72
Application	Opensuse Opensuse Backports SLE 15.0	2
OS	Fedoraproject Fedoraproject Fedora 31 Fedoraproject Fedora 32	2
OS	Opensuse Opensuse Leap 15.1 Opensuse Leap 15.2	2

Vulnerabilities > CVE-2020-15917 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2020-15917"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2020-15917