CVE-2008-7219

Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
VendorProductVersion
hordegroupware
1.0
hordegroupware
1.0.1
hordegroupware
1.0.2
hordegroupware
1.1
hordegroupware_webmail_edition
1.0
hordegroupware_webmail_edition
1.0.2
hordegroupware_webmail_edition
1.0.3
hordegroupware_webmail_edition
1.1
hordekronolith_h3
2.1
hordekronolith_h3
2.1.1
hordekronolith_h3
2.1.2
hordekronolith_h3
2.1.3
hordekronolith_h3
2.1.4
hordekronolith_h3
2.1.5
hordekronolith_h3
2.1.6
hordekronolith_h3
2.2
hordemnemo_h3
2.1
hordemnemo_h3
2.1.1
hordemnemo_h3
2.2
hordenag_h3
2.1
hordenag_h3
2.1.1
hordenag_h3
2.1.2
hordenag_h3
2.1.3
hordenag_h3
2.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kronolith2
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
not-affected
intrepid
ignored
hardy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://lists.horde.org/archives/announce/2008/000362.html
http://lists.horde.org/archives/announce/2008/000363.html
http://lists.horde.org/archives/announce/2008/000364.html
http://lists.horde.org/archives/announce/2008/000365.html
http://lists.horde.org/archives/announce/2008/000366.html
http://lists.horde.org/archives/announce/2008/000368.html
http://lists.horde.org/archives/announce/2008/000369.html
http://lists.horde.org/archives/announce/2008/000371.html
http://lists.horde.org/archives/announce/2008/000376.html
http://lists.horde.org/archives/announce/2008/000377.html
http://secunia.com/advisories/28382
http://www.securityfocus.com/bid/27217
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html
http://lists.horde.org/archives/announce/2008/000362.html
http://lists.horde.org/archives/announce/2008/000363.html
http://lists.horde.org/archives/announce/2008/000364.html
http://lists.horde.org/archives/announce/2008/000365.html
http://lists.horde.org/archives/announce/2008/000366.html
http://lists.horde.org/archives/announce/2008/000368.html
http://lists.horde.org/archives/announce/2008/000369.html
http://lists.horde.org/archives/announce/2008/000371.html
http://lists.horde.org/archives/announce/2008/000376.html
http://lists.horde.org/archives/announce/2008/000377.html
http://secunia.com/advisories/28382
http://www.securityfocus.com/bid/27217
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html