CVE-2020-7046 - Dovecot Dovecot
Critical 7.5
lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3.9.3 mishandles truncated UTF-8 data in command parameters, as demonstrated by the unauthenticated triggering of a submission-login infinite loop.
Affected software
Dovecot Dovecot