Canonical » Ubuntu Linux » 19.10 : Security Vulnerabilities, CVEs, (File inclusion)
OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g., on some Linux distributions) because of a combination of an untrusted search path in makemap.c and race conditions in the offline functionality in smtpd.c.
Max CVSS
4.7
EPSS Score
0.05%
Published
2020-02-25
Updated
2022-01-01
1 vulnerabilities found