Filter

Versions

7.10.6
25
7.10.6-rev01
20
7.10.6-rev02
20
7.10.6-rev03
20
7.10.6-rev04
20
7.10.6-rev05
20
7.10.6-rev06
20
7.10.6-rev07
20
7.10.6-rev08
20
7.10.6-rev09
20
7.10.6-rev10
20
7.10.6-rev11
20
7.10.6-rev12
20
7.10.6-rev13
20
7.10.6-rev14
20
7.10.6-rev15
20
7.10.6-rev16
20
7.10.6-rev17
20
7.10.6-rev18
20
7.10.6-rev19
20
7.10.6-rev20
20
7.10.6-rev21
20
7.10.6-rev22
20
7.10.6-rev23
20
7.10.5
19
7.10.6-rev24
17
7.10.6-rev25
17
7.10.6-rev26
17
7.10.6-rev27
17
7.10.6-rev28
17
7.10.6-rev29
17
7.10.6-rev30
12
7.10.6-rev31
12
7.10.6-rev32
12
7.10.6-rev33
12
7.10.6-rev34
11
7.10.6-rev35
9
7.10.6-rev36
9
7.10.6-rev37
4
7.10.6-rev50
3
8.16
1
8.17
1
8.2
1

Open-xchange Ox App SuiteXSS

medium
5.4
First published (updated )
CVE-2023-41710

Open-xchange Ox App SuiteXSS

medium
5.4
First published (updated )
CVE-2023-29052

Open-xchange Ox App SuiteUser-defined OXMF templates could be used to access a limited part of the internal OX App Suite Java…

high
8.1
First published (updated )
CVE-2023-29051

Open-xchange Ox App SuiteThe optional "LDAP contacts provider" could be abused by privileged users to inject LDAP filter stri…

critical
9.6
First published (updated )
CVE-2023-29050

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2023-29049

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteOS Command Injection

high
8.8
First published (updated )
CVE-2023-29048

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of ar…

medium
4.3
First published (updated )
CVE-2023-24599

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 does not enforce 2FA for all endpoints, e.g., reading from …

medium
4.2
First published (updated )
CVE-2023-24605

Open-xchange Ox App SuiteOX App Suite before frontend 7.10.6-rev24 allows the loading (without user consent) of an e-mail mes…

medium
5.3
First published (updated )
CVE-2023-24597

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2023-24601

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 does not check size limits when downloading, e.g., potentia…

medium
6.5
First published (updated )
CVE-2023-24603

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2023-24602

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., …

medium
4.3
First published (updated )
CVE-2023-24604

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 has an information leak in the handling of distribution lis…

medium
4.3
First published (updated )
CVE-2023-24598

Open-xchange Ox App SuiteOX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls (for r…

medium
4.3
First published (updated )
CVE-2023-24600

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2022-37306

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2022-43697

Open-xchange Ox App SuiteSSRF

medium
4.3
First published (updated )
CVE-2022-43698

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2022-43696

Open-xchange Ox App SuiteSSRF

medium
4.3
First published (updated )
CVE-2022-43699

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteOS Command Injection, Command Injection

critical
9.8
First published (updated )
CVE-2022-29851

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2022-31468

Open-xchange Ox App SuiteSSRF

medium
6.5
First published (updated )
CVE-2022-24406

Open-xchange Ox App SuiteOS Command Injection, Command Injection

critical
9.8
First published (updated )
CVE-2022-24405

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2022-23101

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteOS Command Injection, Command Injection

critical
9.8
First published (updated )
CVE-2022-23100

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-44213

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-44212

Open-xchange Ox App SuiteXSS

medium
5.4
First published (updated )
CVE-2021-44211

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-44210

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-44209

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-44208

Open-xchange Ox App SuiteOX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified By…

medium
4.3
First published (updated )
CVE-2021-38378

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-38377

Open-xchange Ox App SuiteOX App Suite through 7.10.5 has Incorrect Access Control for retrieval of session information via th…

medium
5.3
First published (updated )
CVE-2021-38376

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-38375

Open-xchange Ox App SuiteXSS

medium
5.4
First published (updated )
CVE-2021-38374

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-33495

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-33494

Open-xchange Ox App SuiteCode Injection

medium
6
First published (updated )
CVE-2021-33493

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-33492

Open-xchange Ox App SuitePath Traversal

medium
6.5
First published (updated )
CVE-2021-33491

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-33490

Open-xchange Ox App SuiteXSS

medium
6.1
First published (updated )
CVE-2021-33489

Open-xchange Ox App SuiteInput Validation

medium
6.1
First published (updated )
CVE-2021-33488

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203