Vulnerability Details : CVE-2008-7219
Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors.
Products affected by CVE-2008-7219
- cpe:2.3:a:horde:kronolith_h3:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:horde:kronolith_h3:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware_webmail_edition:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware_webmail_edition:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware_webmail_edition:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:groupware_webmail_edition:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:nag_h3:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:nag_h3:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:horde:nag_h3:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:nag_h3:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:nag_h3:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:mnemo_h3:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:horde:mnemo_h3:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:horde:mnemo_h3:2.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-7219
1.28%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-7219
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2008-7219
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-7219
-
http://lists.horde.org/archives/announce/2008/000365.html
Patch
-
http://lists.horde.org/archives/announce/2008/000371.html
Patch
-
http://lists.horde.org/archives/announce/2008/000366.html
Patch
-
http://lists.horde.org/archives/announce/2008/000363.html
Patch
-
http://lists.horde.org/archives/announce/2008/000364.html
Patch
-
http://lists.horde.org/archives/announce/2008/000377.html
Patch
-
http://lists.horde.org/archives/announce/2008/000362.html
Patch
-
http://lists.horde.org/archives/announce/2008/000376.html
Patch
-
http://lists.horde.org/archives/announce/2008/000368.html
Patch
-
http://lists.horde.org/archives/announce/2008/000369.html
Patch
-
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html
-
http://www.securityfocus.com/bid/27217
Patch
Jump to