Lucene search
HistoryNov 21, 2014 - 3:59 p.m.
CVE-2014-7871
cve-2014-7871
sql injection
open-xchange
ox appsuite
jslob api
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
45.6%
SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.
Related
packetstorm
packetstorm
OX App Suite 7.6.0 SQL Injection
2014-11-07 00:00:00
prion
prion
Sql injection
2014-11-21 15:59:00
securityvulns
securityvulns
Open-Xchange SQL injection
2014-11-10 00:00:00
Open-Xchange Security Advisory 2014-11-07
2014-11-10 00:00:00
zdt
zdt
OX App Suite 7.6.0 SQL Injection Vulnerability
2014-11-10 00:00:00
openvas
openvas
Open-Xchange (OX) App Suite SQL Injection Vulnerability (Oct 2015)
2015-10-05 00:00:00
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
45.6%
Related for CVE-2014-7871