https://feed.craftedsignal.io/tags/cve-2025-59032/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioFri, 27 Mar 2026 09:16:18 +0000https://feed.craftedsignal.io/briefs/2026-03-managesieve-dos/Fri, 27 Mar 2026 09:16:18 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-managesieve-dos/CVE-2025-59032 describes a vulnerability in ManageSieve's AUTHENTICATE command, where using a literal as a SASL initial response can crash the ManageSieve service, leading to a denial-of-service condition.<p>CVE-2025-59032 is a denial-of-service vulnerability affecting ManageSieve services. The vulnerability occurs within the AUTHENTICATE command when processing a literal as the SASL initial response. An attacker can exploit this vulnerability by sending crafted requests that trigger a crash in the ManageSieve service. This can be done repeatedly, rendering the service unavailable to legitimate users. The vulnerability was reported to Open-Xchange and affects Dovecot-based ManageSieve…</p> mediumadvisorydenial-of-servicemanagesievecve-2025-59032mail-service