Cyrus IMAP before 3.2.7, and 3.3.x and 3.4.x before 3.4.1, allows remote authenticated users to bypass intended access restrictions on server annotations and consequently cause replication to stall.
{ "versions": [ { "introduced": "0" }, { "fixed": "3.2.7" }, { "introduced": "3.3.0" }, { "fixed": "3.4.1" } ] }
[ { "events": [ { "introduced": "0" }, { "last_affected": "34" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "35" } ] } ]
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-32056.json"