{"id":"CVE-2021-46853","details":"Alpine before 2.25 allows remote attackers to cause a denial of service (application crash) when LIST or LSUB is sent before STARTTLS.","modified":"2025-08-09T19:01:27Z","published":"2022-11-03T06:15:09Z","references":[{"type":"REPORT","url":"https://bugs.gentoo.org/807613"},{"type":"ARTICLE","url":"https://nostarttls.secvuln.info/"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202301-07"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}