Radicale 1.0.1

CPE Details

Radicale 1.0.1
radicale
radicale
1.0.1
2019-09-30
11h13 +00:00
2019-09-30
11h13 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:radicale:radicale:1.0.1:*:*:*:*:*:*:*

Informations

Vendor

radicale

Product

radicale

Version

1.0.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2017-8342 2017-04-30 13h00 +00:00 Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
8.1
Haute
CVE-2015-8747 2016-02-03 14h00 +00:00 The multifilesystem storage backend in Radicale before 1.1 allows remote attackers to read or write to arbitrary files via a crafted component name.
10
Critique
CVE-2015-8748 2016-02-03 14h00 +00:00 Radicale before 1.1 allows remote authenticated users to bypass owner_write and owner_only limitations via regex metacharacters in the user name, as demonstrated by ".*".
5.3
Moyen
CVE-2016-1505 2016-02-03 14h00 +00:00 The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
10
Critique