cnvd - cnvd-2020-41522

CNVD-2020-41522

Vulnerability from cnvd - Published: 2020-07-22

Title

Cyrus IMAP权限提升漏洞（CNVD-2020-41522）

Description

Cyrus IMAP是一款免费、开源的电子邮件、联系人和日历服务器。 Cyrus IMAP存在权限提升漏洞，该漏洞源于HTTP请求可以在通过同一连接到达的不相关的先前请求的认证上下文中进行解释，攻击者可利用该漏洞实现权限提升。

Severity

高

Patch Name

Cyrus IMAP权限提升漏洞（CNVD-2020-41522）的补丁

Patch Description

Cyrus IMAP是一款免费、开源的电子邮件、联系人和日历服务器。 Cyrus IMAP存在权限提升漏洞，该漏洞源于HTTP请求可以在通过同一连接到达的不相关的先前请求的认证上下文中进行解释，攻击者可利用该漏洞实现权限提升。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html https://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-18928

Impacted products

Name
['CyrusIMAP Cyrus IMAP 2.5.，<2.5.14', 'CyrusIMAP Cyrus IMAP 3.，<3.0.12']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-18928",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-18928"
    }
  },
  "description": "Cyrus IMAP\u662f\u4e00\u6b3e\u514d\u8d39\u3001\u5f00\u6e90\u7684\u7535\u5b50\u90ae\u4ef6\u3001\u8054\u7cfb\u4eba\u548c\u65e5\u5386\u670d\u52a1\u5668\u3002\n\nCyrus IMAP\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eHTTP\u8bf7\u6c42\u53ef\u4ee5\u5728\u901a\u8fc7\u540c\u4e00\u8fde\u63a5\u5230\u8fbe\u7684\u4e0d\u76f8\u5173\u7684\u5148\u524d\u8bf7\u6c42\u7684\u8ba4\u8bc1\u4e0a\u4e0b\u6587\u4e2d\u8fdb\u884c\u89e3\u91ca\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5b9e\u73b0\u6743\u9650\u63d0\u5347\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html\r\nhttps://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-41522",
  "openTime": "2020-07-22",
  "patchDescription": "Cyrus IMAP\u662f\u4e00\u6b3e\u514d\u8d39\u3001\u5f00\u6e90\u7684\u7535\u5b50\u90ae\u4ef6\u3001\u8054\u7cfb\u4eba\u548c\u65e5\u5386\u670d\u52a1\u5668\u3002\r\n\r\nCyrus IMAP\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eHTTP\u8bf7\u6c42\u53ef\u4ee5\u5728\u901a\u8fc7\u540c\u4e00\u8fde\u63a5\u5230\u8fbe\u7684\u4e0d\u76f8\u5173\u7684\u5148\u524d\u8bf7\u6c42\u7684\u8ba4\u8bc1\u4e0a\u4e0b\u6587\u4e2d\u8fdb\u884c\u89e3\u91ca\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5b9e\u73b0\u6743\u9650\u63d0\u5347\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cyrus IMAP\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2020-41522\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "CyrusIMAP Cyrus IMAP 2.5.*\uff0c\u003c2.5.14",
      "CyrusIMAP Cyrus IMAP 3.*\uff0c\u003c3.0.12"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-18928",
  "serverity": "\u9ad8",
  "submitTime": "2019-11-15",
  "title": "Cyrus IMAP\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2020-41522\uff09"
}

CVE-2019-18928 (GCVE-0-2019-18928)

Vulnerability from cvelistv5 – Published: 2019-11-15 03:45 – Updated: 2024-08-05 02:02

Summary

Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://www.cyrusimap.org/imap/download/release-n…	x_refsource_MISC
	https://www.cyrusimap.org/imap/download/release-n…	x_refsource_MISC
	https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
	https://lists.debian.org/debian-lts-announce/2022…	mailing-listx_refsource_MLIST

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:02:39.852Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html"
          },
          {
            "name": "FEDORA-2019-393e1cef4d",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHV3TUU53WCKJ3BBRK2EHAF44MSZEFK6/"
          },
          {
            "name": "FEDORA-2019-03be160f9c",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAGKPZDXQ6KRUGQVRAO6N4PCINP6KS5F/"
          },
          {
            "name": "[debian-lts-announce] 20220619 [SECURITY] [DLA 3052-1] cyrus-imapd security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/06/msg00013.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-06-20T01:06:11",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html"
        },
        {
          "name": "FEDORA-2019-393e1cef4d",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHV3TUU53WCKJ3BBRK2EHAF44MSZEFK6/"
        },
        {
          "name": "FEDORA-2019-03be160f9c",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LAGKPZDXQ6KRUGQVRAO6N4PCINP6KS5F/"
        },
        {
          "name": "[debian-lts-announce] 20220619 [SECURITY] [DLA 3052-1] cyrus-imapd security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/06/msg00013.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-18928",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html",
              "refsource": "MISC",
              "url": "https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.12.html"
            },
            {
              "name": "https://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html",
              "refsource": "MISC",
              "url": "https://www.cyrusimap.org/imap/download/release-notes/2.5/x/2.5.14.html"
            },
            {
              "name": "FEDORA-2019-393e1cef4d",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PHV3TUU53WCKJ3BBRK2EHAF44MSZEFK6/"
            },
            {
              "name": "FEDORA-2019-03be160f9c",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LAGKPZDXQ6KRUGQVRAO6N4PCINP6KS5F/"
            },
            {
              "name": "[debian-lts-announce] 20220619 [SECURITY] [DLA 3052-1] cyrus-imapd security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2022/06/msg00013.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-18928",
    "datePublished": "2019-11-15T03:45:16",
    "dateReserved": "2019-11-12T00:00:00",
    "dateUpdated": "2024-08-05T02:02:39.852Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-41522

CVE-2019-18928 (GCVE-0-2019-18928)

Tags

Sightings

Nomenclature