{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/managesieve/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["medium"],"_cs_tags":["denial-of-service","managesieve","cve-2025-59032","mail-service"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eCVE-2025-59032 is a denial-of-service vulnerability affecting ManageSieve services. The vulnerability occurs within the AUTHENTICATE command when processing a literal as the SASL initial response. An attacker can exploit this vulnerability by sending crafted requests that trigger a crash in the ManageSieve service. This can be done repeatedly, rendering the service unavailable to legitimate users. The vulnerability was reported to Open-Xchange and affects Dovecot-based ManageSieve…\u003c/p\u003e\n","date_modified":"2026-03-27T09:16:18Z","date_published":"2026-03-27T09:16:18Z","id":"/briefs/2026-03-managesieve-dos/","summary":"CVE-2025-59032 describes a vulnerability in ManageSieve's AUTHENTICATE command, where using a literal as a SASL initial response can crash the ManageSieve service, leading to a denial-of-service condition.","title":"ManageSieve AUTHENTICATE Command Denial-of-Service Vulnerability (CVE-2025-59032)","url":"https://feed.craftedsignal.io/briefs/2026-03-managesieve-dos/"}],"language":"en","title":"CraftedSignal Threat Feed — Managesieve","version":"https://jsonfeed.org/version/1.1"}