Описание
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.5.10-3ubuntu1.1 |
| cosmic | ignored | end of life |
| devel | released | 3.0.8-6 |
| disco | ignored | end of life |
| eoan | released | 3.0.8-6 |
| esm-apps/bionic | released | 2.5.10-3ubuntu1.1 |
| esm-apps/focal | released | 3.0.8-6 |
| esm-infra-legacy/trusty | DNE | |
| focal | released | 3.0.8-6 |
| groovy | released | 3.0.8-6 |
Показывать по
Ссылки на источники
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0 ...
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
7.5 High
CVSS2
9.8 Critical
CVSS3