Loading
Integer overflow in the index_urlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the section_offset variable. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8076.
Use CWE-189, Opensuse vendor hub and Leap product page to widen CVE-2015-8078 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-32463, CVE-2022-31254 and CVE-2021-25321 for nearby disclosures in the same product family.