Unrated severityNVD Advisory· Published Oct 20, 2014· Updated Jun 17, 2026
CVE-2014-5447
CVE-2014-5447
Description
Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which allows local users to obtain sensitive information by reading the PHP session files. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-0103.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.