[Git][security-tracker-team/security-tracker][master] Add CVE-2025-41066/horde with light details

Thu Dec 4 08:30:01 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
deed180d by Salvatore Bonaccorso at 2025-12-04T09:29:34+01:00
Add CVE-2025-41066/horde with light details

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -364,7 +364,9 @@ CVE-2025-41742 (Sprecher Automations SPRECON-E-C, SPRECON-E-P, SPRECON-E-T3is vu
 CVE-2025-41086 (Vulnerability in the access control system of the GAMS licensing syste ...)
 	NOT-FOR-US: GAMS licensing system
 CVE-2025-41066 (Horde Groupware v5.2.22 has a user enumeration vulnerability that allo ...)
-	TODO: check
+	- php-horde-groupware <undetermined>
+	NOTE: https://www.incibe.es/en/incibe-cert/notices/aviso/disclosure-sensitive-information-horde-groupware
+	TODO: check, light on details
 CVE-2025-41015 (User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This ...)
 	NOT-FOR-US: TCMAN GIM
 CVE-2025-41014 (User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deed180d1ed2826d1c0cd7953b427a733c36519d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/deed180d1ed2826d1c0cd7953b427a733c36519d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251204/114c0aba/attachment.htm>
