Groupwise Security Vulnerabilities and Issues — Groupwise CVE List

Lucene search

NovellGroupwise

5 matches found

CVE•added 2008/03/08 12:0 a.m.•46 views

CVE-2003-1551

Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."

10CVSS6.8AI score0.00406EPSS

CVE•added 2008/02/05 11:0 a.m.•46 views

CVE-2006-4220

Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess before 7 Support Pack 3 Public Beta allow remote attackers to inject arbitrary web script or HTML via the (1) User.html, (2) Error, (3) User.Theme.index, and (4) and User.lang parameters.

4.3CVSS6AI score0.00616EPSS

CVE•added 2008/03/18 5:44 p.m.•45 views

CVE-2008-1330

Unspecified vulnerability in the Windows client API in Novell GroupWise 7 before SP3 and 6.5 before SP6 Update 3 allows remote authenticated users to access the non-shared stored e-mail messages of another user who has shared at least one folder with the attacker.

3.5CVSS6.1AI score0.00493EPSS

CVE•added 2008/05/02 11:20 p.m.•41 views

CVE-2008-2069

Buffer overflow in Novell GroupWise 7 allows remote attackers to cause a denial of service or execute arbitrary code via a long argument in a mailto: URI.

9.3CVSS8AI score0.14956EPSS

CVE•added 2008/08/06 6:41 p.m.•34 views

CVE-2008-3501

Cross-site scripting (XSS) vulnerability in the WebAccess simple interface in Novell Groupwise 7.0.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00898EPSS