5 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-30287
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Horde Groupware Webmail Edition through 5.2.22 allows a reflection injection attack through which an attacker can instantiate a driver class. This then leads to...
[SECURITY] [DLA 3923-1] php-horde-turba security update
Debian LTS Advisory DLA-3923-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 19, 2024 https://wiki.debian.org/LTS Package : php-horde-turba Version : 4.2.25-5+deb11u2 CVE ID : CVE-2022-30287 Debian Bug : 1012279 It was discovered that there was an arbitrary...
Debian: Security Advisory (DLA-3090-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-30287
CVE-2022-30287 affects Horde Groupware Webmail Edition up to 5.2.22, enabling a reflection injection that allows arbitrary deserialization of PHP objects via a driver-class instantiation. Debian advisories note fixes in php-horde-turba: 4.2.25-5+deb11u2 for Debian 11 (and related LTS advisories f...
CVE-2022-30287
Horde Groupware Webmail Edition through 5.2.22 allows a reflection injection attack through which an attacker can instantiate a driver class. This then leads to arbitrary deserialization of PHP objects...