CVE-2021-29157

Risk Scores

Affected Products

Exploit Intelligence

• CIRCL seen: CVE-2021-29157 (circl-sighting)
• https://dovecot.org/security (circl)
• https://www.openwall.com/lists/oss-security/2021/06/28/1 (circl)
• FEDORA-2021-208340a217 (circl)
• FEDORA-2021-891c1ab1ac (circl)
• GLSA-202107-41 (circl)

Timeline

• Jun 21, 2021 CVE Published
• Jun 28, 2021 PoC Published
• Jun 29, 2021 EPSS Score
• Aug 28, 2021 EPSS Score
• Oct 27, 2021 EPSS Score
• Jan 6, 2022 EPSS Score
• Feb 4, 2022 EPSS Score
• Feb 25, 2022 EPSS Score
• Apr 1, 2022 EPSS Score
• Apr 26, 2022 EPSS Score
• Jun 25, 2022 EPSS Score
• Oct 24, 2022 EPSS Score

References

• https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-1536.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1536 advisory
• https://dovecot.org/pipermail/dovecot-news/2021-June/000457.html advisory
• https://dovecot.org/pipermail/dovecot-news/2021-June/000459.html advisory
• https://dovecot.org/pipermail/dovecot-news/2021-June/000460.html advisory
• https://dovecot.org/pipermail/dovecot-news/2021-June/000461.html advisory
• https://dovecot.org/pipermail/dovecot-news/2021-June/000462.html advisory
• https://ubuntu.com/security/notices/USN-4993-1 advisory
• https://security.gentoo.org/glsa/202107-41 advisory
• https://lists.suse.com/pipermail/sle-security-updates/2021-August/009375.html advisory
• https://lists.suse.com/pipermail/sle-security-updates/2021-August/009373.html advisory
• https://lists.suse.com/pipermail/sle-security-updates/2021-August/009374.html advisory
• https://access.redhat.com/errata/RHSA-2022:1950 advisory
• https://lists.debian.org/debian-lts-announce/2022/09/msg00032.html advisory
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/KZSDCZ5LA6IHY7KXVSL6ULAJVP6OFT2M/ advisory