Known Vulnerabilities for Calibre by Calibre-ebook
Listed below are 9 of the newest known vulnerabilities associated with "Calibre" by "Calibre-ebook".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33206 json | calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, ... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-33205 json | calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, ... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-7714 json | A flaw has been found in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this issue is some unknown functionali... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-7713 json | A vulnerability was detected in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this vulnerability is the funct... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-7709 json | A vulnerability was identified in janeczku Calibre-Web up to 0.6.26. The impacted element is the function generate_auth_token... | Not Provided | 2026-05-03 | 2026-05-04 |
| CVE-2023-46303 json | link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by default, add resources outside... | 7.5 - HIGH | 2023-10-22 | 2023-10-28 |
| CVE-2021-44686 json | calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in htm... | 7.5 - HIGH | 2021-12-07 | 2023-11-07 |
| CVE-2018-7889 json | gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to... | 7.8 - HIGH | 2018-03-08 | 2018-10-12 |
| CVE-2016-10187 json | Not Provided | 2017-03-16 | 2025-04-20 | |
| CVE-2011-4126 json | Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged users the ability to mount ... | 8.1 - HIGH | 2021-10-27 | 2021-11-01 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Calibre-ebook | Calibre | 3.9.0 | |||
| Application | Calibre-ebook | Calibre | 3.8.0 | |||
| Application | Calibre-ebook | Calibre | 3.7.0 | |||
| Application | Calibre-ebook | Calibre | 3.6.0 | |||
| Application | Calibre-ebook | Calibre | 3.5.0 | |||
| Application | Calibre-ebook | Calibre | 3.4.0 | |||
| Application | Calibre-ebook | Calibre | 3.32.0 | |||
| Application | Calibre-ebook | Calibre | 3.31.0 | |||
| Application | Calibre-ebook | Calibre | 3.30.0 | |||
| Application | Calibre-ebook | Calibre | 3.3.0 | |||
| Application | Calibre-ebook | Calibre | 3.29.0 | |||
| Application | Calibre-ebook | Calibre | 3.28.0 | |||
| Application | Calibre-ebook | Calibre | 3.27.1 | |||
| Application | Calibre-ebook | Calibre | 3.27.0 | |||
| Application | Calibre-ebook | Calibre | 3.26.1 | |||
| Application | Calibre-ebook | Calibre | 3.26.0 | |||
| Application | Calibre-ebook | Calibre | 3.25.0 | |||
| Application | Calibre-ebook | Calibre | 3.24.2 | |||
| Application | Calibre-ebook | Calibre | 3.24.1 | |||
| Application | Calibre-ebook | Calibre | 3.24.0 |