CVE-2026-47085 | cyrusimap Cyrus IMAP up to 3.12.2 URLAUTH mboxkey weak password hash
A vulnerability marked as problematic has been reported in cyrusimap Cyrus IMAP up to 3.12.2. Affected by this vulnerability is an unknown functionality of the component URLAUTH. This manipulation of the argument mboxkey causes password hash with insufficient computational effort.
This vulnerability is handled as CVE-2026-47085. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More