EUVD-2017-0110

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Radicale versions before 1.1.2 and 2.x before 2.0.0rc2 are vulnerable to timing oracles and attacks.

Reporter	Title	Published	Views	Family All 35
CNVD	Kozea Radicale Authentication Error Vulnerability	3 May 201700:00	–	cnvd
CVE	CVE-2017-8342	30 Apr 201715:00	–	cve
Cvelist	CVE-2017-8342	30 Apr 201715:00	–	cvelist
Debian	[SECURITY] [DLA 2187-1] radicale security update	25 Apr 202021:13	–	debian
Debian	[SECURITY] [DLA 934-1] radicale security update	9 May 201719:59	–	debian
Debian CVE	CVE-2017-8342	30 Apr 201715:00	–	debiancve
Tenable Nessus	Debian DLA-2187-1 : radicale security update	27 Apr 202000:00	–	nessus
Tenable Nessus	Debian DLA-934-1 : radicale security update	10 May 201700:00	–	nessus
Tenable Nessus	Fedora 25 : radicale (2017-2ab5baea0a)	16 May 201700:00	–	nessus
Tenable Nessus	Fedora 26 : radicale (2017-863f86e7a9)	17 Jul 201700:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "57e63345-70c1-3778-b7fe-0dfc4adba6e4",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "431b7517-258b-36e1-8e2e-fe4e4fa7c3a5",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
github	www.github.com/Kozea/Radicale/commit/190b1dd795f0c552a4992445a231da760211183b
github	www.github.com/Kozea/Radicale/commit/059ba8dec1f22ccbeab837e288b3833a099cee2d
github	www.github.com/Kozea/Radicale/blob/1.1.2/NEWS.rst
bugs	www.bugs.debian.org/861514
lists	www.lists.debian.org/debian-lts-announce/2020/04/msg00019.html
pypi	www.pypi.org/project/radicale
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-8342
github	www.github.com/pypa/advisory-database/tree/main/vulns/radicale/PYSEC-2017-102.yaml
suse	www.suse.com/security/cve/CVE-2017-8342.html
advisories	www.advisories.mageia.org/CVE-2017-8342.html

07 Oct 2025 00:30Current

7.9High risk

Vulners AI Score7.9

CVSS 38.1

CVSS 24.3

EPSS0.0041