CVE-2024-23941

🗓️ 01 Feb 2024 03:56:12Reported by jpcertType

CVE-2024-23941 Cross-site scripting vulnerability in Group Offic

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-23941	1 Feb 202405:21	–	circl
CNNVD	Group Office CRM 安全漏洞	31 Jan 202400:00	–	cnnvd
Cvelist	CVE-2024-23941	1 Feb 202403:56	–	cvelist
EUVD	EUVD-2024-21371	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#63567545: Group Office vulnerable to cross-site scripting	1 Feb 202400:00	–	jvn
Japan Vulnerability Notes	Group Office vulnerable to cross-site scripting	1 Feb 202404:48	–	jvn
NVD	CVE-2024-23941	1 Feb 202404:15	–	nvd
Prion	Cross site scripting	1 Feb 202404:15	–	prion
Positive Technologies	PT-2024-20192 · Unknown · Group-Office	1 Feb 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-23941	23 May 202509:43	–	redhatcve

NVD

Vulners

Node

group-office group_officeRange<6.6.182

group-office group_officeRange6.7.0–6.7.64

group-office group_officeRange6.8.0–6.8.31

[
  {
    "vendor": "Intermesh BV",
    "product": "Group Office",
    "versions": [
      {
        "version": "prior to v6.6.182",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Intermesh BV",
    "product": "Group Office",
    "versions": [
      {
        "version": "prior to v6.7.64",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Intermesh BV",
    "product": "Group Office",
    "versions": [
      {
        "version": "prior to v6.8.31",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN63567545/
github	www.github.com/Intermesh/groupoffice/
group-office	www.group-office.com/

04 Jun 2025 16:15Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.4

EPSS0.00202

SSVC

CWE-79