CVE-2026-27858 in Open-Xchange OX Dovecot Proinformación

Resumen (Inglés)

Attacker can send a specifically crafted message before authentication that causes managesieve to allocate large amount of memory. Attacker can force managesieve-login to be unavailable by repeatedly crashing the process. Protect access to managesieve protocol, or install fixed version. No publicly available exploits are known.

Reservar

2026-02-24

Divulgación

2026-03-27

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
353847	Open-Xchange OX Dovecot Pro Message denegación de servicio	400	No está definido	Arreglo oficial	CVE-2026-27858

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to know what is going to be exploited?

We predict KEV entries!