AVG-1375 log
Package | opendmarc |
Status | Vulnerable |
Severity | Medium |
Type | multiple issues |
Affected | 1.4.0-2 |
Fixed | Unknown |
Current | 1.4.0-2 [community] |
Ticket | Create |
Created | Mon Dec 21 13:00:43 2020 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-12272 | Medium | Yes | Content spoofing | OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail... |
CVE-2019-20790 | Low | Yes | Authentication bypass | OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO... |