First published: Tue Jan 12 2021(Updated: )
OX App Suite through 7.10.4 allows XSS via JavaScript in a Note referenced by a mail:// URL.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Open-xchange Open-xchange Appsuite | <=7.10.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-23933.
The severity of CVE-2021-23933 is medium with a CVSS score of 6.1.
The vulnerability occurs in OX App Suite through 7.10.4 and allows XSS via JavaScript in a Note referenced by a mail:// URL.
The versions up to and including 7.10.3 of OX App Suite are affected by the XSS vulnerability.
Yes, upgrading to a version higher than 7.10.4 of OX App Suite will fix the XSS vulnerability.