3 matches found
CVE-2021-38376
OX App Suite through 7.10.5 has Incorrect Access Control for retrieval of session information via the rampup action of the login API call...
CVE-2021-38376
OX App Suite through 7.10.5 has Incorrect Access Control for retrieval of session information via the rampup action of the login API call...
CVE-2021-38376
The CVE describes an information-disclosure vulnerability in Open-Xchange OX App Suite (through 7.10.5) due to Incorrect Access Control in the rampup action of the login API, enabling retrieval of session information. Affected product: OX App Suite; component: login API rampup path; root cause: a...