First published: Tue Apr 10 2018(Updated: )
The backend in Open-Xchange (OX) AppSuite 7.4.2 before 7.4.2-rev9 allows remote attackers to obtain sensitive information about user email addresses in opportunistic circumstances by leveraging a failure in e-mail auto configuration for external accounts.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Open-Xchange App Suite Backend | =7.4.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2014-2078 is rated as having a low severity level due to its limited impact.
To fix CVE-2014-2078, upgrade Open-Xchange AppSuite to version 7.4.2-rev9 or later.
CVE-2014-2078 can expose sensitive information such as user email addresses.
Yes, CVE-2014-2078 is exploitable by remote attackers under specific conditions.
CVE-2014-2078 specifically affects Open-Xchange AppSuite version 7.4.2 before 7.4.2-rev9.