AVG-1375 log

Package opendmarc
Status Vulnerable
Severity Medium
Type multiple issues
Affected 1.4.0-2
Fixed Unknown
Current 1.4.0-2 [community]
Ticket Create
Created Mon Dec 21 13:00:43 2020
Issue Severity Remote Type Description
CVE-2020-12272 Medium Yes Content spoofing
OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail...
CVE-2019-20790 Low Yes Authentication bypass
OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO...