When was CVE-2011-3372 disclosed?

CVE-2011-3372 was first published in the National Vulnerability Database on December 24, 2011, with the most recent update on April 29, 2026. EchelonGraph re-ingests CVE updates from NVD on a 2-hour cycle, so this page reflects the latest published state.

Is CVE-2011-3372 actively exploited?

CVE-2011-3372 is not currently on CISA's Known Exploited Vulnerabilities catalog. FIRST EPSS estimates a 73.3% percentile likelihood of exploitation in the next 30 days — higher percentiles indicate greater predicted risk.

How do I remediate CVE-2011-3372?

Patch to the fixed version published by the affected vendor. Where vendor advisories exist for CVE-2011-3372, EchelonGraph cross-links them in the Vendor Advisories panel below — those typically contain the canonical remediation steps, fixed version numbers, and any vendor-specific mitigations.

CVE-2011-3372

NONENVD 0.0

0.0

imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before 2.4.12 allows remote attackers to bypass authentication by sending an AUTHINFO USER command without sending an additional AUTHINFO PASS command.

CVSS v3: —
EG Score: —
EPSS: 73.3%
KEV: Not listed

References (18)

secalert@redhathttp://cyrusimap.org/mediawiki/index.php/Latest_Updates
secalert@redhathttp://git.cyrusimap.org/cyrus-imapd/commit/?id=77903669e04c9788460561dd0560b9c916519594
secalert@redhathttp://secunia.com/advisories/46093
secalert@redhathttp://secunia.com/secunia_research/2011-68
secalert@redhathttp://securitytracker.com/id?1026363
secalert@redhathttp://www.debian.org/security/2011/dsa-2318
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2011:149
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2011-1508.html
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=740822
af854a3a-2127-422b-91ae-364da2661108http://cyrusimap.org/mediawiki/index.php/Latest_Updates
af854a3a-2127-422b-91ae-364da2661108http://git.cyrusimap.org/cyrus-imapd/commit/?id=77903669e04c9788460561dd0560b9c916519594
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/46093
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/secunia_research/2011-68
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1026363
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2011/dsa-2318

Is Your Infrastructure Affected by CVE-2011-3372?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2011-3372

Published

Last Modified

References (18)

Frequently asked(4)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-3372?

CVE-2011-3372

📅 Published

🔄 Last Modified

🔗 References (18)

❓ Frequently asked(4)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-3372?

Published

Last Modified

References (18)

Frequently asked(4)