CVE-2020-29668

EPSS 1.04% · P78 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-29668

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Sympa before 6.2.59b.2 allows remote attackers to obtain full SOAP API access by sending any arbitrary string (except one from an expired cookie) as the cookie value to authenticateAndRun.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Sympa 授权问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Sympa是Sympa社区的一套开源的电子邮件管理列表软件。该软件支持电子邮件管理、身份验证和访问控制等功能。 Sympa 6.2.59b版本及之前存在授权问题漏洞，攻击者可利用该漏洞通过发送任意字符串作为cookie值来获得完整的SOAP API访问权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-29668

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-29668

请登录查看更多情报信息。

https://github.com/sympa-community/sympa/issues/1041x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976020x_refsource_MISC
https://github.com/sympa-community/sympa/blob/6.2.59b.2/NEWS.mdx_refsource_MISC
https://github.com/sympa-community/sympa/pull/1044x_refsource_MISC
https://www.debian.org/security/2020/dsa-4818vendor-advisoryx_refsource_DEBIAN
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JICIHAJKKCZXJNIICUDYXGZFQCN6J4U6/vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EFZWDEKQFW3EH665OECDWIWM2MI7T53Y/vendor-advisoryx_refsource_FEDORA
https://lists.debian.org/debian-lts-announce/2020/12/msg00026.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2020-29668

Same Patch Batch · n/a · 2020-12-10 · 12 CVEs total

CVE-2020-12594		Symantec Messaging Gateway 授权问题漏洞
CVE-2020-12595		Symantec Messaging Gateway 安全漏洞
CVE-2020-29666		Lan ATMService M3 ATM 安全漏洞
CVE-2020-29667		Lan ATMService M3 ATM 代码问题漏洞
CVE-2020-26201		Askey AP5100W Dual SIG 安全漏洞
CVE-2020-19527		idreamsoft iCMS 操作系统命令注入漏洞
CVE-2020-19142		idreamsoft iCMS 操作系统命令注入漏洞
CVE-2020-25967		Fastadmin 代码注入漏洞
CVE-2020-16608		Notable 跨站脚本漏洞
CVE-2020-13526		ProcessMaker SQL注入漏洞
CVE-2020-29311		Nightflyza Ubilling 命令注入漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-29668

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-29668

I. Basic Information for CVE-2020-29668

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-29668

III. Intelligence Information for CVE-2020-29668

Same Patch Batch · n/a · 2020-12-10 · 12 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-29668

Leave a comment