Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:open-xchange:open-xchange_appsuite:7.8.4:rev2:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2020-24700 |
OX App Suite through 7.10.3 allows SSRF because GET requests are sent to arbitrary domain names with an initial autoconfig. substring. Published: January 12, 2021; 3:15:13 AM -0500 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 5.5 MEDIUM |
CVE-2020-15002 |
OX App Suite through 7.10.3 allows SSRF via the the /ajax/messaging/message message API. Published: October 23, 2020; 1:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2020-12646 |
OX App Suite 7.10.3 and earlier allows XSS via text/x-javascript, text/rdf, or a PDF document. Published: August 31, 2020; 11:15:10 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2020-12644 |
OX App Suite 7.10.3 and earlier allows SSRF, related to the mail account API and the /folder/list API. Published: August 31, 2020; 11:15:10 AM -0400 |
V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2020-12643 |
OX App Suite 7.10.3 and earlier has Incorrect Access Control via an /api/subscriptions request for a snippet containing an email address. Published: August 31, 2020; 11:15:10 AM -0400 |
V4.0:(not available) V3.1: 4.3 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2020-8544 |
OX App Suite through 7.10.3 allows SSRF. Published: June 16, 2020; 10:15:11 AM -0400 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2020-8543 |
OX App Suite through 7.10.3 has Improper Input Validation. Published: June 16, 2020; 10:15:11 AM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2019-18846 |
OX App Suite through 7.10.2 allows SSRF. Published: February 21, 2020; 4:15:10 PM -0500 |
V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM |
CVE-2019-16717 |
OX App Suite through 7.10.2 has XSS. Published: January 06, 2020; 3:15:12 PM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2019-16716 |
OX App Suite through 7.10.2 has Incorrect Access Control. Published: January 06, 2020; 3:15:12 PM -0500 |
V4.0:(not available) V3.1: 6.6 MEDIUM V2.0: 8.5 HIGH |
CVE-2019-14226 |
OX App Suite through 7.10.2 has Insecure Permissions. Published: October 14, 2019; 1:15:09 PM -0400 |
V4.0:(not available) V3.1: 8.1 HIGH V2.0: 5.5 MEDIUM |
CVE-2019-11806 |
OX App Suite 7.10.1 and earlier has Insecure Permissions. Published: August 20, 2019; 9:15:11 AM -0400 |
V4.0:(not available) V3.0: 3.3 LOW V2.0: 2.1 LOW |
CVE-2019-7159 |
OX App Suite 7.10.1 and earlier allows Information Exposure. Published: June 18, 2019; 9:15:10 AM -0400 |
V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2019-7158 |
OX App Suite 7.10.0 and earlier has Incorrect Access Control. Published: June 17, 2019; 4:15:10 PM -0400 |
V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
CVE-2017-13667 |
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF. Published: May 23, 2019; 2:29:00 PM -0400 |
V4.0:(not available) V3.0: 9.9 CRITICAL V2.0: 6.5 MEDIUM |
CVE-2017-13668 |
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 12:29:08 PM -0400 |
V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2017-17061 |
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 11:29:00 AM -0400 |
V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2017-17060 |
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Insecure Permissions. Published: May 23, 2019; 11:29:00 AM -0400 |
V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
CVE-2017-15030 |
Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 11:29:00 AM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2017-15029 |
Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF. Published: May 23, 2019; 11:29:00 AM -0400 |
V4.0:(not available) V3.0: 4.3 MEDIUM V2.0: 4.0 MEDIUM |