PT-2023-10130 · Holdennb · Collabcal
Published
2023-01-07
·
Updated
2024-05-17
·
CVE-2014-125060
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
holdennb CollabCal (affected versions not specified)
Description
A critical issue was found in holdennb CollabCal, affecting the
handleGet function of the calenderServer.cpp file. This leads to improper authentication and can be exploited remotely.Recommendations
To fix this issue, it is recommended to apply a patch, specifically the one identified as
b80f6d1893607c99e5113967592417d0fe310ce6. As a temporary workaround, consider disabling the handleGet function until a patch is available.Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Collabcal