Zarafa : Security Vulnerabilities, CVEs, CVSS score >= 7
kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.
Max CVSS
7.5
EPSS Score
0.13%
Published
2021-03-31
Updated
2022-07-12
zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.
Max CVSS
8.4
EPSS Score
0.09%
Published
2016-01-11
Updated
2016-01-13
2 vulnerabilities found