Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-34462

Published: 04/05/2024 Updated: 06/05/2024

Vulnerability Summary

Alinto SOGo up to and including 5.10.0 allows XSS during attachment preview.

Vendor Advisories

Debian CVElist Bug Report Logs: sogo: CVE-2024-34462
Debian Bug report logs - #1071163 sogo: CVE-2024-34462 Package: src:sogo; Maintainer for src:sogo is Debian SOGo Maintainers <pkg-sogo-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 15 May 2024 10:15:02 UTC Severity: important Tags: security, upstream Found in ...

References

https://github.com/Alinto/sogo/commit/2e37e59ed140d4aee0ff2fba579ca5f83f2c5920https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1071163https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injectionCVE-2024-35894SQLCVE-2024-5105CVE-2014-100005CVE-2024-35895unauthorizedCVE-2024-22120CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook