Lucene search
K

USN-8504-1: SOGo vulnerabilities

🗓️ 05 Jul 2026 23:01:31Reported by UbuntuType 
ubuntu
 ubuntu
🔗 ubuntu.com👁 2 Views

Multiple Sogo flaws enable cross-site scripting, SQL injection, and authentication bypass across Ubuntu releases.

Related
Packages
ReporterTitlePublishedViews
Family
FreeBSD
SOGo -- SAML user authentication impersonation
1 Jun 202100:00
freebsd
GithubExploit
Exploit for CVE-2025-63499
20 Nov 202513:51
githubexploit
Akamai Blog
SAML Implementation Vulnerability Impacting Some Akamai Services
1 Jun 202113:00
akamaiblog
Akamai Blog
SOGo and PacketFence Impacted by SAML Implementation Vulnerabilities
1 Jun 202113:00
akamaiblog
ATTACKERKB
CVE-2026-8851
18 May 202620:10
attackerkb
ATTACKERKB
CVE-2026-8496
13 May 202618:02
attackerkb
ATTACKERKB
CVE-2026-46445
14 May 202603:10
attackerkb
ATTACKERKB
CVE-2026-46446
14 May 202603:13
attackerkb
ATTACKERKB
CVE-2026-33550
22 Mar 202602:16
attackerkb
ATTACKERKB
CVE-2025-71276
22 Mar 202602:11
attackerkb
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Ubuntu16.04anysogo2.2.17a-1.1ubuntu0.1~esm1sogo_2.2.17a-1.1ubuntu0.1~esm1_any.deb
Ubuntu18.04anysogo3.2.10-1ubuntu0.1~esm1sogo_3.2.10-1ubuntu0.1~esm1_any.deb
Ubuntu20.04anysogo4.3.0-1ubuntu0.1~esm1sogo_4.3.0-1ubuntu0.1~esm1_any.deb
Ubuntu26.04anysogo5.12.4-1.2ubuntu0.1~esm1sogo_5.12.4-1.2ubuntu0.1~esm1_any.deb
Ubuntu22.04anysogo5.5.1-1ubuntu0.1~esm1sogo_5.5.1-1ubuntu0.1~esm1_any.deb
Ubuntu26.04anysogo-activesync5.12.4-1.2ubuntu0.1~esm1sogo-activesync_5.12.4-1.2ubuntu0.1~esm1_any.deb
Ubuntu22.04anysogo-activesync5.5.1-1ubuntu0.1~esm1sogo-activesync_5.5.1-1ubuntu0.1~esm1_any.deb
Ubuntu16.04anysogo-common2.2.17a-1.1ubuntu0.1~esm1sogo-common_2.2.17a-1.1ubuntu0.1~esm1_any.deb
Ubuntu18.04anysogo-common3.2.10-1ubuntu0.1~esm1sogo-common_3.2.10-1ubuntu0.1~esm1_any.deb
Ubuntu20.04anysogo-common4.3.0-1ubuntu0.1~esm1sogo-common_4.3.0-1ubuntu0.1~esm1_any.deb
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

05 Jul 2026 23:01Current
6.5Medium risk
Vulners AI Score6.5
CVSS 25
CVSS 3.17.5 - 8.1
CVSS 48.6
CVSS 34.3
EPSS0.00987
SSVC
2