RSS   Vulnerabilities for 'Groupware core'   RSS

2022-04-01
 
CVE-2022-26562

CWE-287
 

 
An issue in provider/libserver/ECKrbAuth.cpp of Kopano-Core v11.0.2.51 contains an issue which allows attackers to authenticate even if the user account or password is expired.

 
2021-03-31
 
CVE-2021-28994

CWE-400
 

 
kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.

 
2019-12-19
 
CVE-2019-19907

CWE-120
 

 
HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.

 

 >>> Vendor: Kopano 2 Products
Webapp
Groupware core


Copyright 2024, cxsecurity.com

 

Back to Top