CVE-2023-47272

🗓️ 05 Nov 2023 00:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 94 Views

Roundcube 1.5.x & 1.6.x XSS via Content-Type/Content-Disposition heade

Reporter	Title	Published	Views	Family All 52
ATTACKERKB	CVE-2023-47272	6 Nov 202300:15	–	attackerkb
CNNVD	Roundcube Cross-Site Scripting Vulnerability	5 Nov 202300:00	–	cnnvd
Cvelist	CVE-2023-47272	5 Nov 202300:00	–	cvelist
Debian	[SECURITY] [DLA 3683-1] roundcube security update	4 Dec 202323:55	–	debian
Debian	[SECURITY] [DSA 5572-1] roundcube security update	4 Dec 202308:44	–	debian
Debian CVE	CVE-2023-47272	5 Nov 202300:00	–	debiancve
Tenable Nessus	Debian dla-3683 : roundcube - security update	5 Dec 202300:00	–	nessus
Tenable Nessus	Debian DSA-5572-1 : roundcube - security update	4 Dec 202300:00	–	nessus
Tenable Nessus	Fedora 38 : roundcubemail (2023-0fd9865145)	14 Nov 202300:00	–	nessus
Tenable Nessus	Fedora 37 : roundcubemail (2023-70578c5599)	14 Nov 202300:00	–	nessus

NVD

Node

roundcube webmailRange1.5.0–1.5.6

roundcube webmailRange1.6.0–1.6.5

Node

Node

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GILSR762MJB3BNJOVOCMW2JXEPV46IIQ/
lists	www.lists.debian.org/debian-lts-announce/2023/12/msg00005.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z4F4DUA3Q46ZVB2RD7BFP4XMNS4RYFFQ/
debian	www.debian.org/security/2023/dsa-5572
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YFRGBPET73URF6364CI547ZVWQESJLGK/
github	www.github.com/roundcube/roundcubemail/releases/tag/1.5.6
github	www.github.com/roundcube/roundcubemail/releases/tag/1.6.5
github	www.github.com/roundcube/roundcubemail/commit/5ec496885e18ec6af956e8c0d627856c2257ba2d

21 Nov 2024 08:30Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.16.1

EPSS0.00498