Lucene search

CVE-2021-43444

🗓️ 23 Jan 2023 15:13:15Reported by [email protected]Type

CVE-2021-43444 Incorrect Access Control in ONLYOFFIC

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2021-43444	23 Jan 202300:00	–	cvelist
CVE	CVE-2021-43444	23 Jan 202315:15	–	cve
Prion	Design/Logic Flaw	23 Jan 202315:15	–	prion
OSV	CVE-2021-43444	23 Jan 202315:15	–	osv

Nvd

Node

onlyoffice serverRange≤7.0.0.49

Source	Link
labs	www.labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/
onlyoffice	www.onlyoffice.com/
github	www.github.com/ONLYOFFICE/server

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Jan 2023 15:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.5

EPSS0.12525

CWE-287