Plesk

CVE-2022-30287: Vulnerability in Horde

  • Dmitry Bystrov

    • Situation

    CVE-2022-30287 vulnerability was discovered in Horde.

    Impact

    The discovered code vulnerability allows an authenticated user of a Horde instance to execute arbitrary code on the underlying server.

    Call to action

    The vulnerability was fixed in Horde Turba version 4.2.27 and shipped in Plesk Obsidian 18.0.44 #3. Consider updating the Plesk server as per the following article.

    Tweet
    Share
    Share
    Email
    0 Shares