CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kopano-ical formerly zarafa-ical in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x...

7.5CVSS7.3AI score0.00408EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 7:59 a.m.•5 views

CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data...

9.8CVSS6.8AI score0.00215EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:59 a.m.•0 views

CVE-2017-11666

Cross-site scripting XSS vulnerability in js/ViewerPanel.js in the file previewer plugin in Kopano WebApp versions 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via a specially crafted previewable file...

6.1CVSS6AI score0.00223EPSS

Exploits0References1

Ubuntu•added 2024/07/04 4:25 p.m.•19 views

USN-6876-1: Kopano Core vulnerabilities

It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information. This issue only affected Ubuntu 18.04 LTS. CVE-2019-19907 It was discovered that Kopano Core allowed possible authentication with expired passwords. An attacker could u...

9.8CVSS8.3AI score0.02666EPSS

Exploits1

OSV•added 2024/07/04 4:25 p.m.•1 views

USN-6876-1 kopanocore vulnerabilities

9.8CVSS5.8AI score0.02666EPSS

Exploits1References3

Tenable Nessus•added 2024/07/04 12:0 a.m.•11 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Kopano Core vulnerabilities (USN-6876-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6876-1 advisory. It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information...

9.8CVSS8.4AI score0.02666EPSS

Exploits1References3

Tenable Nessus•added 2023/03/06 12:0 a.m.•21 views

Debian dla-3354 : kopano-archiver - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3354 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3354-1 [email protected]...

9.8CVSS8.2AI score0.02666EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 4:1 a.m.•1 views

SUSE CVE-2020-8014

A UNIX Symbolic Link Symlink Following vulnerability in the packaging of kopano-spamd of openSUSE Leap 15.1, openSUSE Tumbleweed allowed local attackers with the privileges of the kopano user to escalate to root. This issue affects: openSUSE Leap 15.1 kopano-spamd versions prior to...

7.8CVSS7.6AI score0.00034EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 3:43 a.m.•1 views

SUSE CVE-2021-28994

kopano-ical formerly zarafa-ical in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers...

7.5CVSS7.5AI score0.00408EPSS

Exploits1References3