CVE-2020-28945: XSS
First published: Mon May 03 2021(Updated: )
OX App Suite 7.10.4 and earlier allows XSS via crafted content to reach an undocumented feature, such as 
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2020-28945.
What is the severity of CVE-2020-28945?
The severity of CVE-2020-28945 is medium, with a CVSS score of 6.1.
Which software versions are affected by CVE-2020-28945?
OX App Suite versions up to and including 7.10.4 are affected by CVE-2020-28945.
How does CVE-2020-28945 allow XSS attacks?
CVE-2020-28945 allows XSS attacks by allowing crafted content to reach an undocumented feature.
Is there a patch or fix available for CVE-2020-28945?
The vendor has not provided a specific patch or fix for CVE-2020-28945. It is recommended to update to a patched version of OX App Suite if available, or follow any mitigation steps provided by the vendor.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/open-xchange
- canonical/open-xchange open-xchange appsuite
- version/open-xchange open-xchange appsuite/7.10.4