CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2021-28994

HIGH
7.5
CVSS Severity Score
EPSS Score0.1020%
EPSS Percentile23.46th
Published2021年3月31日
Last Modified2024年11月21日

Vulnerability Description

kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.

Affected Platforms (CPE)

📦
Kopano

Groupware Core

<= 8.7.16
📦
Kopano

Groupware Core

>= 9.0.0 and <= 9.1.0
📦
Kopano

Groupware Core

>= 10.0.0 and <= 10.0.7
📦
Kopano

Groupware Core

>= 11.0.0 and <= 11.0.1
📦
Zarafa

Zarafa

>= 6.30.0 and <= 7.2.6

References & Advisories

🔗 http://www.openwall.com/lists/oss-security/2021/04/01/1
🔗 http://www.openwall.com/lists/oss-security/2021/04/25/1
🔗 https://www.openwall.com/lists/oss-security/2021/03/19/6
🔗 http://www.openwall.com/lists/oss-security/2021/04/01/1
🔗 http://www.openwall.com/lists/oss-security/2021/04/25/1
🔗 https://www.openwall.com/lists/oss-security/2021/03/19/6

相關漏洞威脅

CVE-2019-199079.8

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...