calibre vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the calibre package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
H Directory Traversal	<9.5.0+ds+~0.10.5-1
M Improper Restriction of Excessive Authentication Attempts	<9.4.0+ds+~0.10.5-1
M HTTP Response Splitting	<9.4.0+ds+~0.10.5-1
H Directory Traversal	<9.3.0+ds+~0.10.5-1
H Directory Traversal	<9.3.0+ds+~0.10.5-1
L Improper Neutralization of Special Elements Used in a Template Engine	<9.2.0+ds+~0.10.5-1
H Directory Traversal	<9.2.0+ds+~0.10.5-1
L Directory Traversal	<9.2.0+ds+~0.10.5-1
L External Control of File Name or Path	<8.14.0+ds+~0.10.5-1
H SQL Injection	<7.16.0+ds-1
L CVE-2024-6782	<7.16.0+ds-1
H Directory Traversal	<7.16.0+ds-1
M Cross-site Scripting (XSS)	<7.16.0+ds-1
H Server-Side Request Forgery (SSRF)	<6.19.1-1
H Allocation of Resources Without Limits or Throttling	<5.33.0+dfsg-1
C Untrusted Search Path	<1.5.0+dfsg-1
H Time-of-check Time-of-use (TOCTOU)	<1.5.0+dfsg-1
C Improper Input Validation	<1.5.0+dfsg-1
H Deserialization of Untrusted Data	<3.19.0+dfsg-1
L Access Restriction Bypass	<2.75.1+dfsg-1
H Numeric Errors	<2.38.0+dfsg-1