Fix of CVE-2021-40525 do not prepend delimiters upon valid directory validations. Affected implementations include: - maildir mailbox store - Sieve file repository This enables a user to access other users data stores (limited to user names being prefixed by the value of the username being used).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2022-02-07T18:50:10
Updated: 2024-08-03T03:28:42.456Z
Reserved: 2022-01-10T00:00:00
Link: CVE-2022-22931
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-02-07T19:15:08.300
Modified: 2024-11-21T06:47:38.117
Link: CVE-2022-22931
Redhat
No data.