2 matches found
CVE-2023-24600
OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls for reading contacts via a move to their own address book...
CVE-2023-24600
CVE-2023-24600 affects OX App Suite. The vulnerability is in versions prior to 7.10.6-rev37, allowing authenticated users to bypass access controls for reading contacts by moving them to their own address book. Impact is information disclosure of contacts; per sources, the issue is mitigated by u...