CVE-2024-40614

July 7, 2024, 3:15 p.m.

Tags

cve@mitre.org

2024-07-07

CVE-2024-40614

Product(s) Impacted

EGroupware

before 23.1.20240624

Description

EGroupware before 23.1.20240624 mishandles an ORDER BY clause.

Weaknesses

Date

Published: July 7, 2024, 3:15 p.m.

Last Modified: July 7, 2024, 3:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/EGroupware/egroupware/commit/553829d30cc2ccdc0e5a8c5a0e16fa03a3399a3f

cve@mitre.org

https://github.com/EGroupware/egroupware/compare/23.1.20240430...23.1.20240624

cve@mitre.org

https://github.com/EGroupware/egroupware/releases/tag/23.1.20240624

cve@mitre.org

https://help.egroupware.org/t/egroupware-maintenance-security-release-23-1-20240624/78438

cve@mitre.org

https://syss.de

cve@mitre.org