Language:
https://roundcube.net/news/2024/08/04/security-updates-1.6.8-and-1.5.8
Severity: Critical
ID: 205297
File Name: roundcube_webmail_1_6_8.nasl
Version: 1.3
Type: remote
Family: CGI abuses
Published: 8/9/2024
Updated: 9/9/2024
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Factor: High
Score: 7.1
Risk Factor: High
Base Score: 9.4
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N
CVSS Score Source: CVE-2024-42009
Risk Factor: Critical
Base Score: 9.3
Temporal Score: 8.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: cpe:/a:roundcube:webmail
Required KB Items: installed_sw/Roundcube Webmail
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/4/2024
Vulnerability Publication Date: 8/4/2024
CVE: CVE-2024-42008, CVE-2024-42009, CVE-2024-42010
IAVA: 2024-A-0470