CVE-2021-32056
MEDIUM4.3EPSS 0.20%Published: 5/10/2021Modified: 4/28/2026
Description
Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1, allows remote authenticated users to bypass intended access restrictions on server annotations and consequently cause replication to stall.
Affected packages (1)
- Debian/cyrus-imapdfrom 0, < 3.2.6-2
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |