GCVE - cpe:2.3:a:icewarp:icewarp:10.2.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:icewarp:icewarp:10.2.1:*:*:*:*:*:*:*

part: a version: 10.2.1 update: *

Vendor	Icewarp (`c8030f23-957a-58b4-8b02-23bd6cb49d34`)
Product	Icewarp (`b4482af8-ba39-5542-92ec-34add6702ef0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-55218`	vulnerable	2026-06-03 14:57:41.952318	Details available IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter. Published: 2025-01-07T00:00:00.000Z Updated: 2025-01-08T14:14:47.600Z Open on db.gcve.eu Reference links https://www.icewarp.com/ https://resources.s4e.io/blog/icewarp-server-10-2-1-reflected-xss-vulnerability-cve-2024-55218/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-37728`	vulnerable	2026-06-03 14:52:29.419532	Details available IceWarp v10.2.1 was discovered to contain cross-site scripting (XSS) vulnerability via the color parameter. Published: 2023-07-20T00:00:00.000Z Updated: 2024-10-24T20:34:32.649Z Open on db.gcve.eu Reference links http://icewarp.com http://icearp.com https://medium.com/%40ayush.engr29/cve-2023-37728-6dfb7586311	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.