Kopano: >> Groupware Core >> 8.7.3 Security Vulnerabilities
kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-03-31
HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.
CVSS Score
9.8
EPSS Score
0.002
Published
2019-12-19