{"api_version":"1","generated_at":"2026-05-15T02:10:53+00:00","cve":"CVE-2008-7219","urls":{"html":"https://cve.report/CVE-2008-7219","api":"https://cve.report/api/cve/CVE-2008-7219.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2008-7219","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2008-7219"},"summary":{"title":"CVE-2008-7219","description":"Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors.","state":"PUBLISHED","assigner":"mitre","published_at":"2009-09-13 22:30:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["CWE-264","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"10","severity":"","vector":"AV:N/AC:L/Au:N/C:C/I:C/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://lists.horde.org/archives/announce/2008/000364.html","name":"http://lists.horde.org/archives/announce/2008/000364.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Mnemo H3 (2.1.2) (final)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000363.html","name":"http://lists.horde.org/archives/announce/2008/000363.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Nag H3 (2.1.4) (final)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000365.html","name":"http://lists.horde.org/archives/announce/2008/000365.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Horde Groupware 1.0.3 (final)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000362.html","name":"http://lists.horde.org/archives/announce/2008/000362.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Kronolith H3 (2.1.7) (final)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000371.html","name":"http://lists.horde.org/archives/announce/2008/000371.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Kronolith H3 (2.2-RC2)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000376.html","name":"http://lists.horde.org/archives/announce/2008/000376.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Horde Groupware 1.1-RC2","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/27217","name":"http://www.securityfocus.com/bid/27217","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"Horde Products Multiple Unspecified Security Bypass Vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://secunia.com/advisories/28382","name":"http://secunia.com/advisories/28382","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Multiple Horde Products Security Bypass - Secunia Advisories - Vulnerability Intelligence - Secunia.com","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000368.html","name":"http://lists.horde.org/archives/announce/2008/000368.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Nag H3 (2.2-RC2)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000366.html","name":"http://lists.horde.org/archives/announce/2008/000366.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Horde Groupware Webmail Edition 1.0.4 (final)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000377.html","name":"http://lists.horde.org/archives/announce/2008/000377.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Horde Groupware Webmail Edition 1.1-RC2","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.horde.org/archives/announce/2008/000369.html","name":"http://lists.horde.org/archives/announce/2008/000369.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"[announce] Mnemo H3 (2.2-RC2)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html","name":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[SECURITY] Fedora 7 Update: kronolith-2.1.7-1.fc7","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2008-7219","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7219","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware","cpe6":"1.0.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware","cpe6":"1.0.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware","cpe6":"1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware_webmail_edition","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware_webmail_edition","cpe6":"1.0.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware_webmail_edition","cpe6":"1.0.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"groupware_webmail_edition","cpe6":"1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.1.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"kronolith_h3","cpe6":"2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"mnemo_h3","cpe6":"2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"mnemo_h3","cpe6":"2.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"mnemo_h3","cpe6":"2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"nag_h3","cpe6":"2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"nag_h3","cpe6":"2.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"nag_h3","cpe6":"2.1.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"nag_h3","cpe6":"2.1.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2008","cve_id":"7219","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"horde","cpe5":"nag_h3","cpe6":"2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T11:56:14.482Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"[announce] 20080122 Kronolith H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000371.html"},{"name":"[announce] 20080122 Mnemo H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000369.html"},{"name":"[announce] 20080109 Nag H3 (2.1.4) (final)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000363.html"},{"name":"27217","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/27217"},{"name":"[announce] 20080109 Horde Groupware 1.0.3 (final)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000365.html"},{"name":"[announce] 20080206 Horde Groupware 1.1-RC2","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000376.html"},{"name":"FEDORA-2008-2212","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html"},{"name":"[announce] 20080109 Mnemo H3 (2.1.2) (final)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000364.html"},{"name":"28382","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/28382"},{"name":"[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000377.html"},{"name":"[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000366.html"},{"name":"[announce] 20080109 Kronolith H3 (2.1.7) (final)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000362.html"},{"name":"[announce] 20080122 Nag H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://lists.horde.org/archives/announce/2008/000368.html"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"descriptions":[{"lang":"en","value":"Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2009-09-13T22:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"[announce] 20080122 Kronolith H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000371.html"},{"name":"[announce] 20080122 Mnemo H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000369.html"},{"name":"[announce] 20080109 Nag H3 (2.1.4) (final)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000363.html"},{"name":"27217","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/27217"},{"name":"[announce] 20080109 Horde Groupware 1.0.3 (final)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000365.html"},{"name":"[announce] 20080206 Horde Groupware 1.1-RC2","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000376.html"},{"name":"FEDORA-2008-2212","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html"},{"name":"[announce] 20080109 Mnemo H3 (2.1.2) (final)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000364.html"},{"name":"28382","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/28382"},{"name":"[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000377.html"},{"name":"[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000366.html"},{"name":"[announce] 20080109 Kronolith H3 (2.1.7) (final)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000362.html"},{"name":"[announce] 20080122 Nag H3 (2.2-RC2)","tags":["mailing-list","x_refsource_MLIST"],"url":"http://lists.horde.org/archives/announce/2008/000368.html"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2008-7219","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"[announce] 20080122 Kronolith H3 (2.2-RC2)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000371.html"},{"name":"[announce] 20080122 Mnemo H3 (2.2-RC2)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000369.html"},{"name":"[announce] 20080109 Nag H3 (2.1.4) (final)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000363.html"},{"name":"27217","refsource":"BID","url":"http://www.securityfocus.com/bid/27217"},{"name":"[announce] 20080109 Horde Groupware 1.0.3 (final)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000365.html"},{"name":"[announce] 20080206 Horde Groupware 1.1-RC2","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000376.html"},{"name":"FEDORA-2008-2212","refsource":"FEDORA","url":"https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00176.html"},{"name":"[announce] 20080109 Mnemo H3 (2.1.2) (final)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000364.html"},{"name":"28382","refsource":"SECUNIA","url":"http://secunia.com/advisories/28382"},{"name":"[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000377.html"},{"name":"[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000366.html"},{"name":"[announce] 20080109 Kronolith H3 (2.1.7) (final)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000362.html"},{"name":"[announce] 20080122 Nag H3 (2.2-RC2)","refsource":"MLIST","url":"http://lists.horde.org/archives/announce/2008/000368.html"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2008-7219","datePublished":"2009-09-13T22:00:00.000Z","dateReserved":"2009-09-13T00:00:00.000Z","dateUpdated":"2024-09-17T01:06:15.652Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2009-09-13 22:30:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["CWE-264","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":10,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware:1.0:*:*:*:*:*:*:*","matchCriteriaId":"71C2653B-7F0B-4628-9E77-44744BC05463"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DC241F01-B9DF-4D0E-BA3C-3523AEEB6BCF"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware:1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"B574D428-0A3A-47CA-A926-5C936F83919A"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware:1.1:*:*:*:*:*:*:*","matchCriteriaId":"C6BBB036-494E-41D4-BD04-40906FAB5C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware_webmail_edition:1.0:*:*:*:*:*:*:*","matchCriteriaId":"1A30F59C-D09A-495D-B5E5-E908D913164E"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware_webmail_edition:1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"B013D26B-BE67-4131-B320-EF87D19E9C67"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware_webmail_edition:1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"664B0D12-607C-4B5F-AC8E-FB1BBD1332E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:groupware_webmail_edition:1.1:*:*:*:*:*:*:*","matchCriteriaId":"46ADF628-449A-463E-A459-69FD9DB2ADAD"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1:*:*:*:*:*:*:*","matchCriteriaId":"391F88AC-0D1B-4F13-874C-6FD3C6E90CE3"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"4C5E6E0C-7E94-4187-B53B-1BBB73C23EE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.2:*:*:*:*:*:*:*","matchCriteriaId":"FDCD1651-0610-4338-9EA6-343865AA9F86"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"6F6A557A-EC2D-40AF-88C7-208DB4E8FA5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.4:*:*:*:*:*:*:*","matchCriteriaId":"733B59F3-1648-4875-9A9B-EC3BCA49BCEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.5:*:*:*:*:*:*:*","matchCriteriaId":"012BBA79-F969-405E-BBC8-FDC23DE25012"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.1.6:*:*:*:*:*:*:*","matchCriteriaId":"5A06B44D-9448-4C96-BD37-790DA9842BE6"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:kronolith_h3:2.2:*:*:*:*:*:*:*","matchCriteriaId":"9B67D985-950E-42B5-BA8D-05AE8A3EE3EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:mnemo_h3:2.1:*:*:*:*:*:*:*","matchCriteriaId":"C2814A27-E3C4-4A69-8FEB-E4900CD9876D"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:mnemo_h3:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"D4CAC140-EA0B-4FFD-B8E7-3295623C6D81"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:mnemo_h3:2.2:*:*:*:*:*:*:*","matchCriteriaId":"38397885-FDB3-4454-BFBB-2B28173FEC79"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:nag_h3:2.1:*:*:*:*:*:*:*","matchCriteriaId":"08307428-AE78-453B-A121-15AEB7049EAF"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:nag_h3:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"195D72BA-A0A6-4568-BC67-77A44F9E0697"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:nag_h3:2.1.2:*:*:*:*:*:*:*","matchCriteriaId":"3F7853DA-0958-401B-83C6-E35FACA4AAF7"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:nag_h3:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"C2BD1454-1D33-4026-A7F6-ADB358D3DC73"},{"vulnerable":true,"criteria":"cpe:2.3:a:horde:nag_h3:2.2:*:*:*:*:*:*:*","matchCriteriaId":"184A2E09-5784-44C4-A5D9-87EA906F86E1"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2008","CveId":"7219","Ordinal":"1","Title":"CVE-2008-7219","CVE":"CVE-2008-7219","Year":"2008"},"notes":[{"CveYear":"2008","CveId":"7219","Ordinal":"1","NoteData":"Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and H3 2.2 before 2.2-RC2; Groupware 1.0 before 1.0.3 and 1.1 before 1.1-RC2; and Groupware Webmail Edition 1.0 before 1.0.4 and 1.1 before 1.1-RC2 does not validate ownership when performing share changes, which has unknown impact and attack vectors.","Type":"Description","Title":"CVE-2008-7219"},{"CveYear":"2008","CveId":"7219","Ordinal":"2","NoteData":"2009-09-13","Type":"Other","Title":"Published"}]}}}