CVE-2021-20501

Summary

IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could exploit this vulnerability to consume unnecessary network bandwidth and disk space, and allow remote attackers to send spam email. IBM X-Force ID: 198056.

Affected Software

VendorProductVersion RangeStatus
IBMi7.1affected
IBMi7.2affected
IBMi7.3affected
IBMi7.4affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References