CVE-2021-43444

Published on: Not Yet Published

Last Modified on: 01/23/2023 05:17:00 PM UTC

CVE-2021-43444

The following vulnerability was found:

ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. Signed document download URLs can be forged due to a weak default URL signing key.

CVE-2021-43444 has been assigned by [email protected] to track the vulnerability

CVE References

Description	Tags ^ⓘ	Link
ONLYOFFICE - Online Office for business \| ONLYOFFICE	www.onlyoffice.com application/x-wine-extension-ini	MISC www.onlyoffice.com/
Remote Code Execution in ONLYOFFICE - Nettitude Labs	labs.nettitude.com text/html	MISC labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/
GitHub - ONLYOFFICE/server: The backend server software layer which is the part of ONLYOFFICE Document Server and is the base for all other components	github.com text/html	MISC github.com/ONLYOFFICE/server

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

There are currently no QIDs associated with this CVE

There are no known software configurations (CPEs) currently associated with this CVE

No vendor comments have been submitted for this CVE

Social Mentions

Source	Title	Posted (UTC)
@PentestingN	CVE-2021-43444 - 43449 Exploiting ONLYOFFICE Web Sockets for Unauth #RCE labs.nettitude.com/blog/exploitin…	2022-12-16 12:15:03
@tbbhunter	CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution labs.nettitude.com/blog/exploitin…	2022-12-19 08:01:24
@ipssignatures	The vuln CVE-2021-43444 has a tweet created 1 days ago and retweeted 10 times. twitter.com/tbbhunter/stat… #pow1rtrtwwcve	2022-12-20 12:06:01
@viehgroup	CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution… twitter.com/i/web/status/1…	2022-12-21 06:25:10
@buaqbot	CVE-2021-43444 到 43449：利用 ONLYOFFICE Web 套接字进行未经身份验证的远程代码执行 ift.tt/6qk2yBL ift.tt/2FNWznv	2022-12-22 01:16:11
@buaqbot	CVE-2021-43444 到 43449：利用 ONLYOFFICE Web 套接字进行未经身份验证的远程代码执行 ift.tt/1KDeaJZ ift.tt/DgO2FhS	2022-12-23 02:16:13
@viehgroup	CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution… twitter.com/i/web/status/1…	2023-01-02 09:08:14
@Dinosn	CVE-2021-43444 to 43449: Unauthenticated Remote Code Execution Exploitation of ONLYOFFICE Web Sockets xz.aliyun.com/t/12008	2023-01-05 19:53:40
@buaqbot	CVE-2021-43444 到 43449：利用 ONLYOFFICE Web 套接字进行未经身份验证的远程代码执行 ift.tt/OYRew6A ift.tt/VsyD48H	2023-01-07 22:38:36
@bugbounty0	CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution #bugbounty… twitter.com/i/web/status/1…	2023-01-21 09:00:17
@CVEreport	CVE-2021-43444 : ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. Signed document… twitter.com/i/web/status/1…	2023-01-23 15:23:53
/r/netcve	CVE-2021-43444	2023-01-23 16:40:14