calibre vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the calibre package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
H Directory Traversal	<9.5.0+ds+~0.10.5-1
M HTTP Response Splitting	<9.4.0+ds+~0.10.5-1
M Improper Restriction of Excessive Authentication Attempts	<9.4.0+ds+~0.10.5-1
H Directory Traversal	<9.3.0+ds+~0.10.5-1
H Directory Traversal	<9.3.0+ds+~0.10.5-1
L Improper Neutralization of Special Elements Used in a Template Engine	<9.2.0+ds+~0.10.5-1
L Directory Traversal	<9.2.0+ds+~0.10.5-1
H Directory Traversal	<9.2.0+ds+~0.10.5-1
L External Control of File Name or Path	<8.14.0+ds+~0.10.5-1
H SQL Injection	<7.16.0+ds-1
C Improper Input Validation	<1.5.0+dfsg-1
M Cross-site Scripting (XSS)	<7.16.0+ds-1
H Numeric Errors	<2.38.0+dfsg-1
H Allocation of Resources Without Limits or Throttling	<5.33.0+dfsg-1
H Directory Traversal	<7.16.0+ds-1
L CVE-2024-6782	<7.16.0+ds-1
H Time-of-check Time-of-use (TOCTOU)	<1.5.0+dfsg-1
C Untrusted Search Path	<1.5.0+dfsg-1
H Deserialization of Untrusted Data	<3.19.0+dfsg-1
L Access Restriction Bypass	<2.75.1+dfsg-1
H Server-Side Request Forgery (SSRF)	<6.19.1-1