Lucene search
K

272 matches found

Cvelist
Cvelist
added 2021/05/21 9:32 p.m.28 views

CVE-2021-33510

Plone through 5.2.4 allows remote authenticated managers to conduct SSRF attacks via an event ical URL, to read one line of a file...

5AI score0.00992EPSS
Exploits0References2
OSV
OSV
added 2021/03/31 11:15 p.m.34 views

UBUNTU-CVE-2021-28994

kopano-ical formerly zarafa-ical in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers...

7.5CVSS5.8AI score0.02049EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/03/31 10:11 p.m.22 views

CVE-2021-28994

kopano-ical formerly zarafa-ical in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers...

7.7AI score0.02049EPSS
Exploits1References3
CVE
CVE
added 2021/03/31 10:11 p.m.71 views

CVE-2021-28994

CVE-2021-28994 affects Kopano Groupware Core via kopano-ical (formerly zarafa-ical). The vulnerability causes memory exhaustion by processing long HTTP headers. Affected versions include Kopano Groupware Core up to 8.7.16, 9.x up to 9.1.0, 10.x up to 10.0.7, and 11.x up to 11.0.1, and Zarafa 6.30...

7.5CVSS7.5AI score0.02049EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2020/03/30 8:6 a.m.40 views

CVE-2019-11705

A flaw in Thunderbird's implementation of iCal causes a stack buffer overflow in icalrecuraddbydayrules when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1. Mitigation Thunderbird can be configured to use icaljs inste...

9.8CVSS3.4AI score0.09903EPSS
Exploits3References4
RedhatCVE
RedhatCVE
added 2020/03/29 1:56 a.m.25 views

CVE-2019-11703

A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in parsergetnextchar when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1. Mitigation Thunderbird can be configured to use icaljs instead of...

9.8CVSS2.2AI score0.10527EPSS
Exploits4References4
RedhatCVE
RedhatCVE
added 2020/03/29 1:56 a.m.26 views

CVE-2019-11704

A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in icalmemorystrdupanddequote when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1. Mitigation Thunderbird can be configured to use icaljs...

9.8CVSS2.2AI score0.10527EPSS
Exploits4References5
RedhatCVE
RedhatCVE
added 2020/03/07 7:33 a.m.41 views

CVE-2019-11706

A flaw in Thunderbird's implementation of iCal causes a type confusion in icaltimezonegetvtimezoneproperties when processing certain email messages, resulting in a crash. This vulnerability affects Thunderbird 60.7.1. Mitigation Thunderbird can be configured to use icaljs instead of libical by...

7.5CVSS1.9AI score0.09731EPSS
Exploits3References4
CNVD
CNVD
added 2020/02/19 12:0 a.m.1 views

SOPlanning SQL Injection Vulnerability (CNVD-2020-10631)

SOPlanning is an online planning tool for efficiently organizing projects and tasks. SOPlanning 1.45 suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to execute commands via the users parameter of exportical.php...

9CVSS8.3AI score0.02413EPSS
Exploits1References1
OSV
OSV
added 2019/12/19 6:15 p.m.2 views

CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.8CVSS7.3AI score0.02192EPSS
Exploits0References3
NVD
NVD
added 2019/12/19 6:15 p.m.19 views

CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.8CVSS9.5AI score0.02192EPSS
Exploits0References3
OSV
OSV
added 2019/12/19 6:15 p.m.6 views

UBUNTU-CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.8CVSS7.3AI score0.02192EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/12/19 6:15 p.m.22 views

CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.8CVSS7.2AI score0.02192EPSS
Exploits0References4
Prion
Prion
added 2019/12/19 6:15 p.m.15 views

Design/Logic Flaw

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

7.5CVSS9.4AI score0.02192EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/12/19 12:0 a.m.4 views

PT-2019-15999 · Kopano +2 · Kopano Groupware Core +2

Name of the Vulnerable Software and Affected Versions: Kopano Groupware Core versions prior to 8.7.7 Description: The issue is related to out-of-bounds access in the HrAddFBBlock function, specifically during the parsing of ICal data. This occurs due to the mishandling of an array copy in the...

9.8CVSS6.8AI score0.02192EPSS
Exploits1References17
Cvelist
Cvelist
added 2019/12/19 12:0 a.m.22 views

CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.5AI score0.02192EPSS
Exploits0References3
CVE
CVE
added 2019/12/19 12:0 a.m.77 views

CVE-2019-19907

CVE-2019-19907 affects Kopano Groupware Core (Kopano Core) before 8.7.7. The vulnerability arises in HrAddFBBlock implemented in libfreebusy/freebusyutil.cpp, where an array copy during ICal data parsing can cause out-of-bounds access. Descriptions from NVD document a CVSS v3.1 base score of 9.8 ...

9.8CVSS9.3AI score0.02192EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2019/12/19 12:0 a.m.40 views

CVE-2019-19907

Removed by vendor...

9.8CVSS9.3AI score0.02192EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.5 views

The vulnerability of the icalmemory_strdup_and_dequote function in the iCal calendar software for Thunderbird email processing, related to the execution of operations outside the buffer in memory. This vulnerability allows an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the icalmemorystrdupanddequote function in the iCal calendar software for Thunderbird email processing is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and cau...

10CVSS5.9AI score0.10527EPSS
Exploits4References9Affected Software4
Tenable Nessus
Tenable Nessus
added 2019/09/11 12:0 a.m.20 views

NewStart CGSL MAIN 4.06 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0178)

The remote NewStart CGSL host, running version MAIN 4.06, has thunderbird packages installed that are affected by multiple vulnerabilities: - Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a...

10CVSS8.4AI score0.55874EPSS
Exploits31References19
Rows per page
Query Builder