CVE-2024-34083 | aio-libs aiosmtpd up to 1.4.5 STARTTLS smtpd.py unknown vulnerability (GHSA-wgjv-9j3q-jhg8)

Inserito da Angelo Barbosa | Mag 19, 2024 | CVE

A vulnerability classified as problematic has been found in aio-libs aiosmtpd up to 1.4.5. Affected is an unknown function of the file smtpd.py of the component STARTTLS Handler. The manipulation leads to acceptance of extraneous untrusted data with trusted data.

This vulnerability is traded as CVE-2024-34083. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34083 | aio-libs aiosmtpd up to 1.4.5 STARTTLS smtpd.py unknown vulnerability (GHSA-wgjv-9j3q-jhg8)

Post correlati

CVE-2024-30589 | Tenda FH1202 1.2.0.14(408) /goform/addressNat fromAddressNat entrys stack-based overflow

CVE-2024-0882 | qwdigital LinkWechat 5.1.0 Universal Download Interface resource name path traversal

CVE-2024-22811 | Tormach xsTECH CNC Router 2.9.6 Hostmot2 Configuration Cookie denial of service

CVE-2023-49447 | JFinalCMS 5.0.0 /admin/nav/update cross-site request forgery