Critical severity10.0NVD Advisory· Published Feb 3, 2016· Updated Jun 17, 2026
CVE-2016-1505
CVE-2016-1505
Description
The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
RadicalePyPI | < 1.1 | 1.1 |
Affected products
2Patches
Vulnerability mechanics
References
10- github.com/Kozea/Radicale/pull/343nvdPatchWEB
- github.com/advisories/GHSA-84cw-mxhv-qvv4ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-1505ghsaADVISORY
- www.openwall.com/lists/oss-security/2016/01/05/7nvdWEB
- www.openwall.com/lists/oss-security/2016/01/06/4nvdWEB
- www.openwall.com/lists/oss-security/2016/01/06/7nvdWEB
- www.openwall.com/lists/oss-security/2016/01/07/7nvdWEB
- www.securityfocus.com/bid/80255nvdWEB
- github.com/Kozea/Radicale/commit/b4b3d51f33c7623d312f289252dd7bbb8f58bbe6ghsaWEB
- github.com/Unrud/Radicale/commit/b4b3d51f33c7623d312f289252dd7bbb8f58bbe6nvd
News mentions
0No linked articles in our index yet.