Net-imap
This hub aggregates every CVE we track for Net-imap, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
7
CVEs tracked
2
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH2CRITICAL2
Monthly trend
0
0
0
0
0
0
0
1
0
1
0
0
0
0
0
0
0
0
0
0
0
0
5
0
2024-072026-06
Latest CVEs
The 7 most recently published vulnerabilities affecting Net-imap.
- CVE-2026-42258net-imap: Command Injection via unvalidated Symbol inputs9.8
- CVE-2026-42257net-imap: Command Injection via "raw" arguments to multiple commands9.8
- CVE-2026-42256net-imap: Denial of service via high iteration count for `SCRAM-*` authentication6.5
- CVE-2026-42245net-imap: Quadratic complexity when reading response literals7.5
- CVE-2026-42246net-imap vulnerable to STARTTLS stripping via invalid response timing7.4
- CVE-2025-43857net-imap rubygem vulnerable to possible DoS by memory exhaustion6.5
- CVE-2025-25186Net::IMAP vulnerable to possible DoS by memory exhaustion6.5
Product normalization is registry-driven with AI assist and human review. How it works