Zarafa Zarafa Collaboration Platform — known CVE vulnerabilities
Every CVE whose affected-product data names Zarafa Zarafa Collaboration Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-6566 — CVSS 8.4 (high): zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on…
CVE-2015-3436 — CVSS 6.6 (medium): provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) before 7.1.13 and 7.2.x before 7.2.1 allows local users to write to…
CVE-2014-5450 — CVSS 5.5 (medium): Zarafa Collaboration Platform 4.1 uses world-readable permissions for /etc/zarafa/license, which allows local users to obtain sensitive…
CVE-2014-9465 — CVSS 5.0 (medium): senddocument.php in Zarafa WebApp before 2.0 beta 3 and WebAccess in Zarafa Collaboration Platform (ZCP) 7.x before 7.1.12 beta 1 and 7.2.x…