CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy.

CWE 1 Total

Learn more

CWE-757: CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

CVSS 1 Total

Learn more

Score	Severity	Version	Vector String
6.9	MEDIUM	3.1	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N

Product Status

Learn more

Versions 1 Total

Default Status: unknown

affected

References 2 Total

https://github.com/Snawoot/postfix-mta-sts-resolver/security/advisories/GHSA-h92m-42h4-82f6
external site
https://gist.github.com/Snawoot/b9da85d6b26dea5460673b29df1adc6b
external site

Updated: 2024-08-05

This container includes required additional information provided by the CVE Program for this vulnerability.

References 2 Total

https://github.com/Snawoot/postfix-mta-sts-resolver/security/advisories/GHSA-h92m-42h4-82f6
external site
x_transferred
https://gist.github.com/Snawoot/b9da85d6b26dea5460673b29df1adc6b
external site
x_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: GitHub (maintainer security advisories)

Description

CWE 1 Total

CVSS 1 Total

Product Status

References 2 Total

CVE Program

References 2 Total