Lucene search
Ubuntu.comUB:CVE-2024-37384HistoryJun 07, 2024 - 12:00 a.m.
CVE-2024-37384
2024-06-0700:00:00
ubuntu.com
ubuntu.com
11
cve-2024-37384
roundcube webmail
xss
user preferences
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list
columns from user preferences.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | roundcube | < 1.3.6+dfsg.1-1ubuntu0.1~esm4 | UNKNOWN |
| ubuntu | 20.04 | noarch | roundcube | < 1.4.3+dfsg.1-1ubuntu0.1~esm4 | UNKNOWN |
| ubuntu | 22.04 | noarch | roundcube | < 1.5.0+dfsg.1-2ubuntu0.1~esm3 | UNKNOWN |
| ubuntu | 23.10 | noarch | roundcube | < 1.6.2+dfsg-1ubuntu0.2 | UNKNOWN |
| ubuntu | 16.04 | noarch | roundcube | < 1.2~beta+dfsg.1-0ubuntu1+esm4 | UNKNOWN |
References
github.com/roundcube/roundcubemail/commit/9ca8aa6680c579132e0d1fa59447df8d524ec91c
github.com/roundcube/roundcubemail/commit/cde4522c5c95f13c6aeeb1600ab17e5067a536f7
github.com/roundcube/roundcubemail/releases/tag/1.5.7
github.com/roundcube/roundcubemail/releases/tag/1.6.7
launchpad.net/bugs/cve/CVE-2024-37384
nvd.nist.gov/vuln/detail/CVE-2024-37384
security-tracker.debian.org/tracker/CVE-2024-37384
ubuntu.com/security/notices/USN-6848-1
www.cve.org/CVERecord?id=CVE-2024-37384
Related
osv
osv
CVE-2024-37384
2024-06-07 04:15:30
roundcube - security update
2024-06-18 00:00:00
roundcube - security update
2024-06-17 00:00:00
cve
cve
CVE-2024-37384
2024-06-07 04:15:30
nvd
nvd
CVE-2024-37384
2024-06-07 04:15:30
cvelist
cvelist
CVE-2024-37384
2024-06-07 00:00:00
vulnrichment
vulnrichment
CVE-2024-37384
2024-06-07 00:00:00
debiancve
debiancve
CVE-2024-37384
2024-06-07 04:15:30
redos
redos
ROS-20240618-01
2024-06-18 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3835-1)
2024-07-01 00:00:00
Debian: Security Advisory (DSA-5714-1)
2024-07-01 00:00:00
Roundcube Webmail < 1.5.7, 1.6.x < 1.6.7 Multiple Vulnerabilities - Linux
2024-05-23 00:00:00
nessus
nessus
Debian dla-3835 : roundcube - security update
2024-06-17 00:00:00
Debian dsa-5714 : roundcube - security update
2024-06-18 00:00:00
ubuntu
ubuntu
Roundcube vulnerabilities
2024-06-25 00:00:00