VYPR

courier-authlib

by Debian

CVEs (1)

  • CVE-2021-28374Mar 15, 2021
    risk 0.00cvss epss 0.01

    The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a cleartext password in some configurations. In general, it…