DEBIAN-CVE-2016-6189
- Source
- https://security-tracker.debian.org/tracker/CVE-2016-6189
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2016-6189.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2016-6189
- Upstream
- Published
- 2017-02-17T17:59:00.797Z
- Modified
- 2025-11-19T01:08:48.103734Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Incomplete blacklist in SOGo before 2.3.12 and 3.x before 3.1.1 allows remote authenticated users to obtain sensitive information by reading the fields in the (1) ics or (2) XML calendar feeds.
- References
Affected packages
Debian:11 / sogo
Package
- Name
- sogo
- Purl
- pkg:deb/debian/sogo?arch=source
Debian:12 / sogo
Package
- Name
- sogo
- Purl
- pkg:deb/debian/sogo?arch=source
Debian:13 / sogo
Package
- Name
- sogo
- Purl
- pkg:deb/debian/sogo?arch=source
Debian:14 / sogo
Package
- Name
- sogo
- Purl
- pkg:deb/debian/sogo?arch=source