NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Keyword (text search): cpe:2.3:a:open-xchange:open-xchange_appsuite:7.8.4:rev2:*:*:*:*:*:*
CPE Name Search: true

There are 78 matching records.

Displaying matches 41 through 60.

Vuln ID	Summary	CVSS Severity
CVE-2020-24700	OX App Suite through 7.10.3 allows SSRF because GET requests are sent to arbitrary domain names with an initial autoconfig. substring. Published: January 12, 2021; 3:15:13 AM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 5.5 MEDIUM
CVE-2020-15002	OX App Suite through 7.10.3 allows SSRF via the the /ajax/messaging/message message API. Published: October 23, 2020; 1:15:13 AM -0400	V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM
CVE-2020-12646	OX App Suite 7.10.3 and earlier allows XSS via text/x-javascript, text/rdf, or a PDF document. Published: August 31, 2020; 11:15:10 AM -0400	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW
CVE-2020-12644	OX App Suite 7.10.3 and earlier allows SSRF, related to the mail account API and the /folder/list API. Published: August 31, 2020; 11:15:10 AM -0400	V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM
CVE-2020-12643	OX App Suite 7.10.3 and earlier has Incorrect Access Control via an /api/subscriptions request for a snippet containing an email address. Published: August 31, 2020; 11:15:10 AM -0400	V4.0:(not available) V3.1: 4.3 MEDIUM V2.0: 4.0 MEDIUM
CVE-2020-8544	OX App Suite through 7.10.3 allows SSRF. Published: June 16, 2020; 10:15:11 AM -0400	V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.0 MEDIUM
CVE-2020-8543	OX App Suite through 7.10.3 has Improper Input Validation. Published: June 16, 2020; 10:15:11 AM -0400	V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2019-18846	OX App Suite through 7.10.2 allows SSRF. Published: February 21, 2020; 4:15:10 PM -0500	V4.0:(not available) V3.1: 5.0 MEDIUM V2.0: 4.0 MEDIUM
CVE-2019-16717	OX App Suite through 7.10.2 has XSS. Published: January 06, 2020; 3:15:12 PM -0500	V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM
CVE-2019-16716	OX App Suite through 7.10.2 has Incorrect Access Control. Published: January 06, 2020; 3:15:12 PM -0500	V4.0:(not available) V3.1: 6.6 MEDIUM V2.0: 8.5 HIGH
CVE-2019-14226	OX App Suite through 7.10.2 has Insecure Permissions. Published: October 14, 2019; 1:15:09 PM -0400	V4.0:(not available) V3.1: 8.1 HIGH V2.0: 5.5 MEDIUM
CVE-2019-11806	OX App Suite 7.10.1 and earlier has Insecure Permissions. Published: August 20, 2019; 9:15:11 AM -0400	V4.0:(not available) V3.0: 3.3 LOW V2.0: 2.1 LOW
CVE-2019-7159	OX App Suite 7.10.1 and earlier allows Information Exposure. Published: June 18, 2019; 9:15:10 AM -0400	V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2019-7158	OX App Suite 7.10.0 and earlier has Incorrect Access Control. Published: June 17, 2019; 4:15:10 PM -0400	V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2017-13667	OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF. Published: May 23, 2019; 2:29:00 PM -0400	V4.0:(not available) V3.0: 9.9 CRITICAL V2.0: 6.5 MEDIUM
CVE-2017-13668	OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 12:29:08 PM -0400	V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW
CVE-2017-17061	OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 11:29:00 AM -0400	V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW
CVE-2017-17060	OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Insecure Permissions. Published: May 23, 2019; 11:29:00 AM -0400	V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2017-15030	Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Published: May 23, 2019; 11:29:00 AM -0400	V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-15029	Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF. Published: May 23, 2019; 11:29:00 AM -0400	V4.0:(not available) V3.0: 4.3 MEDIUM V2.0: 4.0 MEDIUM