CVE-2025-71063
HIGHErrands < 46.2.10 - Improper Certificate Validation for CalDAV Servers
Title source: llmDescription
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers.
References (5)
Core 5
Core References
Third Party Advisory, Mailing List
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1123738
Issue Tracking
https://github.com/mrvladus/Errands/issues/401
Release Notes
https://github.com/mrvladus/Errands/releases/tag/46.2.10
Scores
CVSS v3
8.2
EPSS
0.0014
EPSS Percentile
3.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-295
Status
published
Products (1)
mrvladus/errands
< 46.2.10
Published
Jan 12, 2026
Tracked Since
Feb 18, 2026