Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-27810

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection...

6.4CVSS5.9AI score0.00206EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/03 12:24 a.m.4 views

SUSE CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS5.9AI score0.00206EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/03 12:24 a.m.4 views

SUSE CVE-2026-27824

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS5.8AI score0.00148EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/02 12:42 p.m.7 views

CVE-2026-27824

A flaw was found in calibre, an e-book manager. A remote attacker can bypass the brute-force protection mechanism in the calibre Content Server by manipulating the X-Forwarded-For header. This vulnerability allows attackers to circumvent IP-based bans, making the server susceptible to credential...

5.3CVSS5.9AI score0.00148EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/02 12:42 p.m.7 views

CVE-2026-27810

A flaw was found in calibre, an e-book manager. An authenticated user can exploit an HTTP Response Header Injection vulnerability in the calibre Content Server. This is due to an unsanitized contentdisposition query parameter in specific endpoints, allowing the injection of arbitrary HTTP headers...

6.4CVSS6AI score0.00206EPSS
Exploits1References2
NVD
NVD
added 2026/02/27 8:21 p.m.12 views

CVE-2026-27824

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS0.00148EPSS
Exploits1References1
NVD
NVD
added 2026/02/27 8:21 p.m.11 views

CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS0.00206EPSS
Exploits1References1
OSV
OSV
added 2026/02/27 8:21 p.m.5 views

DEBIAN-CVE-2026-27824

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS5.4AI score0.00148EPSS
Exploits1References1
OSV
OSV
added 2026/02/27 8:21 p.m.8 views

DEBIAN-CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS5.6AI score0.00206EPSS
Exploits1References1
OSV
OSV
added 2026/02/27 8:21 p.m.5 views

UBUNTU-CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS5.9AI score0.00206EPSS
Exploits1References3
OSV
OSV
added 2026/02/27 8:21 p.m.5 views

UBUNTU-CVE-2026-27824

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS5.8AI score0.00148EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/27 7:46 p.m.4 views

CVE-2026-27824

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS5.9AI score0.00148EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/02/27 7:46 p.m.10 views

EUVD-2026-9057

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...

5.3CVSS5.9AI score0.00148EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/27 7:44 p.m.20 views

CVE-2026-27810 calibre Vulnerable to HTTP Response Header Injection

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS0.00206EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/27 7:44 p.m.6 views

EUVD-2026-9056

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS6AI score0.00206EPSS
Exploits1References1
Rows per page
Query Builder