2 matches found
SOGo < 2.3.12, 3.x < 3.1.1 Multiple Vulnerabilities
SOGo is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:alinto:sogo"; if description...
CVE-2016-6190
CVE-2016-6190 affects SOGo prior to 2.3.12 and 3.x prior to 3.1.1. The issue stems from insufficient restriction of the UID and DTSTAMP attributes, enabling remote authenticated users to glean sensitive appointment details under the View the Date & Time restriction. This can be demonstrated by co...