This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Zarafa | First view | 2014-04-28 |
| Product | Zarafa | Last view | 2021-03-31 |
| Version | 6.30.5 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:zarafa:zarafa | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2021-03-31 | CVE-2021-28994 | kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers. |
| 2.1 | 2014-07-29 | CVE-2014-0103 | WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files. |
| 5 | 2014-04-28 | CVE-2014-0037 | The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username." |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 33% (1) | CWE-770 | Allocation of Resources Without Limits or Throttling |
| 33% (1) | CWE-310 | Cryptographic Issues |
| 33% (1) | CWE-20 | Improper Input Validation |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-09-25 | Name: The remote Mandriva Linux host is missing one or more security updates. File: mandriva_MDVSA-2014-182.nasl - Type: ACT_GATHER_INFO |
| 2014-07-28 | Name: The remote Fedora host is missing a security update. File: fedora_2014-7889.nasl - Type: ACT_GATHER_INFO |
| 2014-07-28 | Name: The remote Fedora host is missing a security update. File: fedora_2014-7896.nasl - Type: ACT_GATHER_INFO |
| 2014-02-20 | Name: The remote Mandriva Linux host is missing one or more security updates. File: mandriva_MDVSA-2014-044.nasl - Type: ACT_GATHER_INFO |
| 2014-02-17 | Name: The remote Fedora host is missing a security update. File: fedora_2014-1883.nasl - Type: ACT_GATHER_INFO |
| 2014-02-17 | Name: The remote Fedora host is missing a security update. File: fedora_2014-1900.nasl - Type: ACT_GATHER_INFO |
