Icewarp Server vulnerabilities
2 known vulnerabilities affecting icewarp/icewarp_server.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2020-8512P3MEDIUMCVSS 6.1PoC≤ 11.4.4.12020-02-01
CVE-2020-8512 [MEDIUM] CWE-79 CVE-2020-8512: In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webmail/ color parameter.
In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webmail/ color parameter.
nvd
CVE-2021-36580P3MEDIUMCVSS 6.1PoCfixed in 13.0.1.22023-07-27
CVE-2021-36580 [MEDIUM] CWE-601 CVE-2021-36580: Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0
Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter.
nvd