Main Vulnerability Database Vulnerabilities #VU124731

#VU124731 Authentication Bypass by Capture-replay in Dovecot - CVE-2026-27855

Published: April 1, 2026 / Updated: April 1, 2026

Vulnerability identifier: #VU124731

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2026-27855

CWE-ID: CWE-294

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Dovecot

Software vendor:
Dovecot

Description

The vulnerability allows a remote attacker to bypass authentication.

The vulnerability exists due to authentication bypass by capture-replay in OTP authentication driver when caching credentials. A remote attacker can capture and replay OTP credentials to bypass authentication.

User interaction is required to trigger the initial authentication, and auth cache must be enabled with username alteration in passdb.

Remediation

Install security update from vendor's website.

#VU124731 Authentication Bypass by Capture-replay in Dovecot - CVE-2026-27855

Description

Remediation

External links

Please verify you're human