Lucene search
K

18 matches found

NVD
NVD
added 2023/01/23 3:15 p.m.23 views

CVE-2021-43445

ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. An attacker can authenticate with the web socket service of the ONLYOFFICE document editor which is protected by JWT auth by using a default JWT signing key...

9.8CVSS9.4AI score0.01707EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/01/23 12:0 a.m.8 views

PT-2023-12452 · Unknown · Onlyoffice

Name of the Vulnerable Software and Affected Versions: ONLYOFFICE all versions as of 2021-11-08 Description: The issue is related to Improper Input Validation, which can be exploited if the document id is known, allowing an attacker to spoof user names who interact with a document. Recommendation...

5.3CVSS6.7AI score0.01012EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/01/23 12:0 a.m.6 views

PT-2023-12453 · Unknown · Onlyoffice

Name of the Vulnerable Software and Affected Versions: ONLYOFFICE all versions as of 2021-11-08 Description: The issue allows for Server-Side Request Forgery SSRF, where the document editor service can be exploited to read and serve arbitrary URLs as a document. Recommendations: For all versions ...

8.1CVSS7AI score0.01249EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/01/23 12:0 a.m.29 views

CVE-2021-43444

ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. Signed document download URLs can be forged due to a weak default URL signing key...

7.7AI score0.012EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/01/23 12:0 a.m.4 views

ONLYOFFICE 代码问题漏洞

Ascensio System ONLYOFFICE is an office software from Ascensio System, Latvia. A security vulnerability exists in all versions of ONLYOFFICE prior to 2021-11-08 that stems from susceptibility to server-side request forgery SSRF attacks. The Document Editor service can be misused to read arbitrary...

8.1CVSS7.8AI score0.01249EPSS
Exploits1References4
Circl
Circl
added 2021/11/08 8:36 p.m.4 views

CVE-2020-4153

creationtimestamp| type| source ---|---|--- 2021-11-08 20:36:09+00:00| seen| https://t.me/cibsecurity/32010...

5.4CVSS5.6AI score0.0048EPSS
Exploits0References1
Circl
Circl
added 2021/11/08 8:29 p.m.7 views

CVE-2021-40577

creationtimestamp| type| source ---|---|--- 2021-11-08 20:29:33+00:00| seen| https://t.me/cibsecurity/32001...

5.4CVSS5.5AI score0.01635EPSS
Exploits4References1
Circl
Circl
added 2021/11/08 8:29 p.m.6 views

CVE-2021-29735

creationtimestamp| type| source ---|---|--- 2021-11-08 20:29:31+00:00| seen| https://t.me/cibsecurity/32000...

5.4CVSS5AI score0.00476EPSS
Exploits0References1
Circl
Circl
added 2021/11/08 8:29 p.m.8 views

CVE-2021-24706

creationtimestamp| type| source ---|---|--- 2021-11-08 20:29:07+00:00| seen| https://t.me/cibsecurity/31987...

4.8CVSS4.9AI score0.00598EPSS
Exploits2References1
Circl
Circl
added 2021/11/08 6:29 p.m.7 views

CVE-2021-42770

creationtimestamp| type| source ---|---|--- 2021-11-08 18:29:04+00:00| seen| https://t.me/cibsecurity/31983...

6.1CVSS6.1AI score0.0133EPSS
Exploits1References1
Circl
Circl
added 2021/11/08 6:29 p.m.6 views

CVE-2021-28024

creationtimestamp| type| source ---|---|--- 2021-11-08 18:29:02+00:00| seen| https://t.me/cibsecurity/31981...

9.8CVSS8.7AI score0.0131EPSS
Exploits1References1
Circl
Circl
added 2021/11/08 4:28 p.m.7 views

CVE-2021-32481

creationtimestamp| type| source ---|---|--- 2021-11-08 16:28:38+00:00| seen| https://t.me/cibsecurity/31972...

6.1CVSS6.1AI score0.00647EPSS
Exploits0References1
Circl
Circl
added 2021/11/08 4:28 p.m.6 views

CVE-2021-22051

creationtimestamp| type| source ---|---|--- 2021-11-08 16:28:33+00:00| seen| https://t.me/cibsecurity/31969...

6.5CVSS6.3AI score0.00668EPSS
Exploits0References1
Circl
Circl
added 2021/11/08 4:28 p.m.6 views

CVE-2021-29243

creationtimestamp| type| source ---|---|--- 2021-11-08 16:28:32+00:00| seen| https://t.me/cibsecurity/31968...

6.1CVSS6.1AI score0.00568EPSS
Exploits0References1
Circl
Circl
added 2021/11/08 8:58 a.m.9 views

CVE-2020-1555

creationtimestamp| type| source ---|---|--- 2021-11-08 08:58:19+00:00| seen| MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422...

9.3CVSS6.8AI score0.0451EPSS
Exploits0
Circl
Circl
added 2021/11/08 7:28 a.m.5 views

CVE-2021-42073

creationtimestamp| type| source ---|---|--- 2021-11-08 07:28:32+00:00| seen| https://t.me/cibsecurity/31946...

8.2CVSS7.8AI score0.0141EPSS
Exploits1References1
Circl
Circl
added 2021/11/08 7:28 a.m.4 views

CVE-2021-31601

creationtimestamp| type| source ---|---|--- 2021-11-08 07:28:31+00:00| seen| https://t.me/cibsecurity/31945...

7.1CVSS6.6AI score0.01307EPSS
Exploits3References1
Circl
Circl
added 2021/03/03 2:44 a.m.11 views

CVE-2021-26854

creationtimestamp| type| source ---|---|--- 2021-03-03 02:44:45+00:00| seen| https://t.me/cibsecurity/24377 2021-11-08 08:58:19+00:00| seen| MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422...

7.2CVSS7.7AI score0.19573EPSS
Exploits1References1
Rows per page
Query Builder