CVE-2016-6189 in SOGoinfo

Summary

Incomplete blacklist in SOGo before 2.3.12 and 3.x before 3.1.1 allows remote authenticated users to obtain sensitive information by reading the fields in the (1) ics or (2) XML calendar feeds.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

07/09/2016

Disclosure

02/17/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
97100	SOGo Blacklist Filter incomplete blacklist	184	Not defined	Official fix	CVE-2016-6189

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!