VYPR

Groupware Core

by Kopano

CVEs (2)

  • CVE-2021-28994Mar 31, 2021
    risk 0.00cvss epss 0.02

    kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.

  • CVE-2019-19907Dec 19, 2019
    risk 0.00cvss epss 0.02

    HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.