Lucene search

PRIOn knowledge basePRION:CVE-2023-26435

HistoryJun 20, 2023 - 8:15 a.m.

Open redirect

2023-06-2008:15:00

PRIOn knowledge base

www.prio-n.com

open redirect

odt documents

network discovery

local files

content filters

validators

security improvement

exploits

4.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON

It was possible to call filesystem and network references using the local LibreOffice instance using manipulated ODT documents. Attackers could discover restricted network topology and services as well as including local files with read permissions of the open-xchange system user. This was limited to specific file-types, like images. We have improved existing content filters and validators to avoid including any local resources. No publicly available exploits are known.

CPENameOperatorVersion
open-xchange_appsuite_backendlt7.10.6
open-xchange_appsuite_backendeq7.10.6
open-xchange_appsuite_backendeq7.10.6 revision-39

Name	Operator	Version
open-xchange_appsuite_backend	lt	7.10.6
open-xchange_appsuite_backend	eq	7.10.6
open-xchange_appsuite_backend	eq	7.10.6 revision-39

References

packetstormsecurity.com/files/173083/OX-App-Suite-SSRF-Resource-Consumption-Command-Injection.html

seclists.org/fulldisclosure/2023/Jun/8

documentation.open-xchange.com/appsuite/security/advisories/csaf/2023/oxas-adv-2023-0002.json

software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6219_7.10.6_2023-03-20.pdf