Kolab Kolab Groupware Server — known CVE vulnerabilities
Every CVE whose affected-product data names Kolab Kolab Groupware Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2005-4828 — CVSS 6.4 (medium): Kolab Server 2.0.0 and 2.0.1 does not properly handle when a large email is sent with a "." in the wrong place, which causes kolabfilter to…
CVE-2004-1997 — CVSS 4.6 (medium): Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows local users to…
CVE-2006-0213 — CVSS 4.6 (medium): Kolab Server 2.0.1, 2.0.2 and development versions pre-2.1-20051215 and earlier, when authenticating users via secure SMTP, stores…
CVE-2008-4165 — CVSS 4.0 (medium): admin/user/create_user.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local…