4 matches found
CVE-2022-24406
OX App Suite through 7.10.6 allows SSRF because multipart/form-data boundaries are predictable, and this can lead to injection into internal Documentconverter API calls...
CVE-2022-24406
creationtimestamp| type| source ---|---|--- 2022-07-27 18:46:48+00:00| seen| https://t.me/cibsecurity/47078...
CVE-2022-24406
OX App Suite through 7.10.6 allows SSRF because multipart/form-data boundaries are predictable, and this can lead to injection into internal Documentconverter API calls...
CVE-2022-24406
OX App Suite (Open-Xchange) up to version 7.10.6 is affected by an SSRF flaw where predictable multipart/form-data boundaries allow an attacker to inject into internal Documentconverter API calls. This can enable manipulation of internal API parameters and potentially compromise internal componen...