Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-26562: Kopano

An issue in provider/libserver/ECKrbAuth.cpp of Kopano-Core v11.0.2.51 contains an issue which allows attackers to authenticate even if the user account or password is expired.

CVE
#vulnerability#web#apache#js#git#java#php#c++#auth

Skip to content

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

*   Explore
*   All features
*   Documentation
*   GitHub Skills
*   Blog
    • For

    • Enterprise

    • Teams

    • Startups

    • Education

    • By Solution

    • CI/CD & Automation

    • DevOps

    • DevSecOps

    • Case Studies

    • Customer Stories

    • Resources

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
    

*   Repositories
*   Topics
*   Trending
*   Collections
  • Pricing

  • Overview

  • Repositories

  • Packages

  • People

Pinned

  1. Read-only mirror of Kopano Core git repo

    C++ 50 29

  1. Read-only mirror of the Kopano WebApp git repo

    JavaScript 19 22

  2. Material from the Kopano workshop at the 2021 Univention Summit

    Shell 1

Repositories

Type

Select type

All Public Sources Forks Archived Mirrors Templates

Language

Select language

All C# C++ Go HTML JavaScript PHP Python Shell TypeScript

Sort

Select order

Last updated Name Stars

  • kcc-go Public

    This implements a minimal client interfacing with a couple of SOAP methods of a Kopano server.

    Go 0 Apache-2.0

    3 0 3

    Updated Mar 4, 2023

  • kopano-webapp Public

    Read-only mirror of the Kopano WebApp git repo

    JavaScript

    19 22 0 5

    Updated Mar 2, 2023

  • oidc-go Public

    Oidc-go is a Go package to provide common helpers to interface with OpenID Connect servers.

    Go

    2

    Apache-2.0

    1 0 1

    Updated Feb 25, 2023

  • kwmserver Public

    Kopano Web Meetings Server implements the signaling/channelling server for Kopano Web Meetings

    Go

    5 3 1 3

    Updated Feb 24, 2023

  • libkcoidc Public

    This project implements a C shared library with a public API to validate Kopano Konnect tokens (JSON Web Tokens).

    Go 0 0

    2 2

    Updated Feb 24, 2023

  • kapi Public

    Kopano API provides a web service with the endpoints to interface with Kopano via HTTP APIs.

    Go

    3

    0

    0 1

    Updated Feb 15, 2023

  • pubsjs Public

    Kopano API Pubs Client Library (pubsjs)

    TypeScript 0 MIT 0

    0 16

    Updated Jan 7, 2023

  • kwmjs Public

    Kopano Web Meetings Client Library (kwmjs)

    TypeScript

    1

    MIT 0

    0 11

    Updated Jan 7, 2023

  • kpop Public

    Kpop is a collection of React UI components and UI uitilites for Kopano Web apps

    JavaScript 0 Apache-2.0

    1 0 17

    Updated Dec 10, 2022

  • meet Public

    A PWA for doing video meetings

Most used topics

Related news

Ubuntu Security Notice USN-6876-1

Ubuntu Security Notice 6876-1 - It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information. This issue only affected Ubuntu 18.04 LTS. It was discovered that Kopano Core allowed possible authentication with expired passwords. An attacker could use this issue to bypass authentication.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907