Lucene search

[email protected]CVE-2009-4824

HistoryApr 27, 2010 - 3:30 p.m.

CVE-2009-4824

2010-04-2715:30:00

[email protected]

web.nvd.nist.gov

cve-2009-4824

unspecified vulnerability

kolab webclient

kolab server

image upload form

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

Unspecified vulnerability in Kolab Webclient before 1.2.0 in Kolab Server before 2.2.3 allows attackers to have an unspecified impact via vectors related to an “image upload form.”

Affected configurations

NVD

Node

kolabkolab_serverRange≤2.2.2

kolabkolab_serverMatch2.1.0

kolabkolab_serverMatch2.1.0beta1

kolabkolab_serverMatch2.1.0beta2

kolabkolab_serverMatch2.1.0beta3

kolabkolab_serverMatch2.1.0beta4

kolabkolab_serverMatch2.1.0rc1

kolabkolab_serverMatch2.1.0rc2

kolabkolab_serverMatch2.2beta1

kolabkolab_serverMatch2.2beta2

kolabkolab_serverMatch2.2beta3

kolabkolab_serverMatch2.2rc1

kolabkolab_serverMatch2.2rc2

kolabkolab_serverMatch2.2rc3

kolabkolab_serverMatch2.2.0

kolabkolab_serverMatch2.2.1

kolabkolab_serverMatch2.2.1beta1

kolabkolab_serverMatch2.2.1rc1

CPENameOperatorVersion
kolab:kolab_serverkolab kolab serverle2.2.2
kolab:kolab_serverkolab kolab servereq2.1.0
kolab:kolab_serverkolab kolab servereq2.2
kolab:kolab_serverkolab kolab servereq2.2.0
kolab:kolab_serverkolab kolab servereq2.2.1

CPE	Name	Operator	Version
kolab:kolab_server	kolab kolab server	le	2.2.2
kolab:kolab_server	kolab kolab server	eq	2.1.0
kolab:kolab_server	kolab kolab server	eq	2.2
kolab:kolab_server	kolab kolab server	eq	2.2.0
kolab:kolab_server	kolab kolab server	eq	2.2.1