CVE-2023-26428
CVE-2023-26428 affects Open-Xchange OX App Suite (OXAS-BACKEND). Affected component: snippet retrieval mechanism where attackers could request arbitrary snippet IDs, including other users’ email signatures within the same context, effectively reading non-shared content due to permission handling ...