Known Vulnerabilities for Open-xchange Appsuite Frontend by Open-xchange
Listed below are 7 of the newest known vulnerabilities associated with "Open-xchange Appsuite Frontend" by "Open-xchange".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-26450 json | The "OX Count" web service did not specify a media-type when processing responses by external resources. Malicious script cod... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2023-26449 json | The "OX Chat" web service did not specify a media-type when processing responses by external resources. Malicious script code... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2023-26448 json | Custom log-in and log-out locations are used-defined as jslob but were not checked to contain malicious protocol handlers. Ma... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2023-26447 json | The "upsell" widget for the portal allows to specify a product description. This description taken from a user-controllable j... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2023-26446 json | The users clientID at "application passwords" was not sanitized or escaped before being added to DOM. Malicious script code c... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2023-26445 json | Frontend themes are defined by user-controllable jslob settings and could point to a malicious resource which gets processed ... | 5.4 - MEDIUM | 2023-08-02 | 2024-01-12 |
| CVE-2016-6846 json | Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-rev38, ... | 6.1 - MEDIUM | 2017-03-29 | 2017-04-04 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 | |||
| Application | Open-xchange | Open-xchange Appsuite Frontend | 7.8.3 |