CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-19907

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 48.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://lists.debian.org/debian-lts-announce/2023/03/msg00006.html
https://stash.kopano.io/projects/KC/repos/kopanocore/browse/RELNOTES.txt
https://stash.kopano.io/projects/KC/repos/kopanocore/commits/4e02b420fff
https://lists.debian.org/debian-lts-announce/2023/03/msg00006.html
https://stash.kopano.io/projects/KC/repos/kopanocore/browse/RELNOTES.txt
https://stash.kopano.io/projects/KC/repos/kopanocore/commits/4e02b420fff

Products affected by CVE-2019-19907

Kopano » Groupware Core » Version: 8.7.1

cpe:2.3:a:kopano:groupware_core:8.7.1
Kopano » Groupware Core » Version: 8.7.2

cpe:2.3:a:kopano:groupware_core:8.7.2
Kopano » Groupware Core » Version: 8.7.3

cpe:2.3:a:kopano:groupware_core:8.7.3
Kopano » Groupware Core » Version: 8.7.4

cpe:2.3:a:kopano:groupware_core:8.7.4
Kopano » Groupware Core » Version: 8.7.5

cpe:2.3:a:kopano:groupware_core:8.7.5
Kopano » Groupware Core » Version: 8.7.6

cpe:2.3:a:kopano:groupware_core:8.7.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-19907

Products

Pricing

Contact Us