High severity8.8NVD Advisory· Published Sep 20, 2017· Updated May 13, 2026
CVE-2015-5395
CVE-2015-5395
Description
Cross-site request forgery (CSRF) vulnerability in SOGo before 3.1.0.
Affected products
4cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/inverse-inc/sogo/commit/582baf2960969c73f98643e46cfb49432c30b711nvdPatchThird Party Advisory
- security-tracker.debian.org/tracker/CVE-2015-5395/nvdPatchThird Party Advisory
- sogo.nu/bugs/view.phpnvdExploitIssue TrackingPatchVendor Advisory
- www.openwall.com/lists/oss-security/2015/07/10/9nvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts/2016/05/msg00197.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.