Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: open-xchange Clear
ID Title
CVE-2026-42006 Vulnerability in dovecot (CVE-2026-42006)
vulnerability in dovecot (CVE-2026-42006). Risk of unauthorized operations or information disclosure.
CVE-2026-40016 Vulnerability in dovecot (CVE-2026-40016)
vulnerability in dovecot (CVE-2026-40016). Risk of unauthorized operations or information disclosure.
CVE-2026-40020 Vulnerability in dovecot (CVE-2026-40020)
vulnerability in dovecot (CVE-2026-40020). Risk of unauthorized operations or information disclosure.
CVE-2026-33603 Vulnerability in dovecot (CVE-2026-33603)
vulnerability in dovecot (CVE-2026-33603). Confidential information can be exposed externally.
CVE-2026-27851 Vulnerability in dovecot (CVE-2026-27851)
vulnerability in dovecot (CVE-2026-27851). Confidential information can be exposed externally.
CVE-2026-24031 SQL Injection in dovecot (CVE-2026-24031)
SQL injection in dovecot (CVE-2026-24031). Confidential information can be exposed externally.
CVE-2026-27856 Authentication Bypass in dovecot (CVE-2026-27856)
authentication bypass in dovecot (CVE-2026-27856). Confidential information can be exposed externally.
CVE-2026-27857 Vulnerability in dovecot (CVE-2026-27857)
vulnerability in dovecot (CVE-2026-27857). Risk of unauthorized operations or information disclosure.
CVE-2026-27858 Vulnerability in dovecot (CVE-2026-27858)
vulnerability in dovecot (CVE-2026-27858). Risk of unauthorized operations or information disclosure.
CVE-2025-59032 Vulnerability in dovecot (CVE-2025-59032)
vulnerability in dovecot (CVE-2025-59032). Risk of unauthorized operations or information disclosure.
CVE-2024-4367 Vulnerability in pdfjs-dist (CVE-2024-4367)
vulnerability in pdfjs-dist (CVE-2024-4367). Successful exploitation can lead to full system takeover. Exploitable via ``isEvalSupported``. Mitigation: upgrade to `4.2.67` or later.
CVE-2015-1588 Cross-Site Scripting (XSS) in open-xchange (CVE-2015-1588)
cross-site scripting in open-xchange (CVE-2015-1588). Risk of unauthorized operations or information disclosure.
CVE-2016-6846 Cross-Site Scripting (XSS) in open-xchange (CVE-2016-6846)
cross-site scripting in open-xchange (CVE-2016-6846). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →