Home > Vulnerability Database > CVE-2009-4824

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2009-4824

Date: April 27, 2010

Unspecified vulnerability in Kolab Webclient before 1.2.0 in Kolab Server before 2.2.3 allows attackers to have an unspecified impact via vectors related to an "image upload form."

Severity Score

7.3

Related Resources (9)

Url: http://www.vupen.com/english/advisories/2010/1245

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4824

Url: http://files.kolab.org/server/release/kolab-server-2.2.3/sources/release-notes.txt

Url: http://osvdb.org/61301

Url: http://www.securityfocus.com/bid/37465

Url: http://secunia.com/advisories/37918

Url: https://nvd.nist.gov/vuln/detail/CVE-2009-4824

Url: http://www.mandriva.com/security/advisories?name=MDVSA-2010:108

Url: https://www.mend.io/vulnerability-database/CVE-2009-4824

Severity Score

7.3

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us