Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-47272

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Roundcube 1.5.x before 1.5.6 and 1.6.x before 1.6.5 allows XSS via a Content-Type or Content-Disposition header used for attachment preview or download...

6.1CVSS5.8AI score0.00641EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/22 12:0 a.m.26 views

openSUSE 15 Security Update : roundcubemail (openSUSE-SU-2024:0257-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0257-1 advisory. Update to 1.6.7 This is a security update to the stable version 1.6 of Roundcube Webmail. It provides a fix to a recently reported XSS vulnerabilities: F...

6.1CVSS5.9AI score0.00641EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/08/22 12:0 a.m.16 views

openSUSE Security Advisory (openSUSE-SU-2024:0257-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.35 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : Roundcube vulnerabilities (USN-6848-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6848-1 advisory. Matthieu Faou and Denys Klymenko discovered that Roundcube incorrectly handled certain SVG images. A remote...

6.1CVSS7.4AI score0.75873EPSS
Exploits7References5
OpenVAS
OpenVAS
added 2024/06/26 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-6848-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.8AI score0.75873EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2023/12/05 12:0 a.m.35 views

Debian dla-3683 : roundcube - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3683 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3683-1 [email protected] https://www.debian.org/lts/security/...

6.1CVSS6AI score0.00641EPSS
Exploits0References4
Debian
Debian
added 2023/12/04 8:44 a.m.102 views

[SECURITY] [DSA 5572-1] roundcube security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5572-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 04, 2023 https://www.debian.org/security/faq -...

6.1CVSS6.5AI score0.00641EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/04 12:0 a.m.30 views

Debian DSA-5572-1 : roundcube - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5572 advisory. Rene Rehme discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not properly set headers when handling attachments. This would all...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References7
CVE
CVE
added 2023/11/05 12:0 a.m.111 views

CVE-2023-47272

CVE-2023-47272 affects Roundcube Webmail (1.5.x before 1.5.6 and 1.6.x before 1.6.5). The underlying issue is improper handling of header values (Content-Type/Content-Disposition) when processing attachments, enabling a cross-site scripting (XSS) vulnerability via attachment preview or download. ...

6.1CVSS5.7AI score0.00641EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder