2 matches found
Open-Xchange Security Advisory 2014-04-08
Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Vulnerability type: Information exposure CWE-200 Vulnerable version: 7.4.2 and earlier Vulnerable component: frontend Fixed version: 7.4.2-rev13, 7.4.1-rev11, 7.2.2-rev20 Report confidence: Confirmed Solution status: Fixed by Vendor Vendor...
CVE-2014-2392
Open-Xchange App Suite is affected by CVE-2014-2392 (E-Mail autoconfiguration) and CVE-2014-2392 describes that a password is transmitted in a GET parameter. Affected versions include 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13. The underlying issue is information exposure...