The remote host is affected by the vulnerability described in GLSA-202006-23 (Cyrus IMAP Server: Access restriction bypass)

    An issue was discovered in Cyrus IMAP Server where sieve script       uploading is excessively trusted.
  Impact :

    A user can use a sieve script to create any mailbox with administrator       privileges.
  Workaround :

    Disable sieve script uploading until the upgrade is complete.

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4655 advisory.

    - Add fix for CVE-2019-19783

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

This plugin has been deprecated as it does not adhere to established standards for this style of check.

Update to new upstream version 3.0.13, which includes a fix for CVE-2019-19783 and other minor fixes. Release notes:
https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.13.htm l

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The remote NewStart CGSL host, running version MAIN 6.02, has cyrus-imapd packages installed that are affected by multiple vulnerabilities:

  - Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request     may be interpreted in the authentication context of an unrelated previous request that arrived over the     same connection. (CVE-2019-18928)

  - An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If     sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a user     with a mail account on the service can use a sieve script containing a fileinto directive to create any     mailbox with administrator privileges, because of folder mishandling in autosieve_createfolder() in     imap/lmtp_sieve.c. (CVE-2019-19783)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It was discovered that the lmtpd component of the Cyrus IMAP server created mailboxes with administrator privileges if the 'fileinto' was used, bypassing ACL checks.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4655 advisory.

    The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support.

    Security Fix(es):

    * cyrus-imapd: privilege escalation in HTTP request (CVE-2019-18928)

    * cyrus-imapd: lmtpd component created mailboxes with administrator privileges if the fileinto was used,     bypassing ACL checks (CVE-2019-19783)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes     linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4655 advisory.

  - cyrus-imapd: privilege escalation in HTTP request (CVE-2019-18928)

  - cyrus-imapd: lmtpd component created mailboxes with administrator privileges if the fileinto was used,     bypassing ACL checks (CVE-2019-19783)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4566-1 advisory.

    It was dicovered that Cyrus IMAP Server could execute arbitrary code via a crafted HTTP PUT operation for     an event with a long iCalendar property name. An attacker could use this vulnerability to cause a crash or     possibly execute arbitrary code. (CVE-2019-11356)

    It was discovered that the Cyrus IMAP Server allow users to create any mailbox with administrative     privileges. A local attacker could use this to obtain sensitive information. (CVE-2019-19783)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - cyrus-imapd: Out of bounds heap read in index_urlfetch (CVE-2015-8076)

  - cyrus-imapd: lmtpd component created mailboxes with administrator privileges if the fileinto was used,     bypassing ACL checks (CVE-2019-19783)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

ID	Name	Product	Family	Published	Updated	Severity
137460	GLSA-202006-23 : Cyrus IMAP Server: Access restriction bypass	Nessus	Gentoo Local Security Checks	6/17/2020	3/7/2024	medium
142756	Oracle Linux 8 : cyrus-imapd (ELSA-2020-4655)	Nessus	Oracle Linux Local Security Checks	11/12/2020	11/1/2024	critical
196877	RHEL 5 : cyrus-imapd (Unpatched Vulnerability) (deprecated)	Nessus	Red Hat Local Security Checks	5/11/2024	5/31/2024	medium
132650	Fedora 30 : cyrus-imapd (2019-7938c21723)	Nessus	Fedora Local Security Checks	1/6/2020	4/1/2024	medium
147242	NewStart CGSL MAIN 6.02 : cyrus-imapd Multiple Vulnerabilities (NS-SA-2021-0086)	Nessus	NewStart CGSL Local Security Checks	3/10/2021	3/10/2021	critical
132326	Debian DSA-4590-1 : cyrus-imapd - security update	Nessus	Debian Local Security Checks	12/20/2019	12/31/2019	medium
196828	RHEL 6 : cyrus-imapd (Unpatched Vulnerability) (deprecated)	Nessus	Red Hat Local Security Checks	5/11/2024	5/31/2024	medium
142383	RHEL 8 : cyrus-imapd (RHSA-2020:4655)	Nessus	Red Hat Local Security Checks	11/4/2020	11/7/2024	critical
145926	CentOS 8 : cyrus-imapd (CESA-2020:4655)	Nessus	CentOS Local Security Checks	2/1/2021	3/23/2021	critical
141178	Ubuntu 18.04 LTS : Cyrus IMAP Server vulnerabilities (USN-4566-1)	Nessus	Ubuntu Local Security Checks	10/5/2020	8/27/2024	critical
132656	Fedora 31 : cyrus-imapd (2019-ad23a4522d)	Nessus	Fedora Local Security Checks	1/6/2020	4/1/2024	medium
198912	RHEL 7 : cyrus-imapd (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	6/3/2024	6/3/2024	medium

Detections

Analytics

Plugins Search

medium

critical

medium

medium

critical

medium

medium

critical

critical

critical

medium

medium