3 matches found
CVE-2023-26441
Cacheservice did not correctly check if relative cache object were pointing to the defined absolute location when accessing resources. An attacker with access to the database and a local or restricted network would be able to read arbitrary local file system resources that are accessible by the...
CVE-2023-26441
creationtimestamp| type| source ---|---|--- 2023-08-02 16:39:14+00:00| seen| https://t.me/cibsecurity/67576...
CVE-2023-26441
CVE-2023-26441 affects the Open-Xchange AppSuite Cacheservice. An attacker with database access or on a local/restricted network could read arbitrary local files accessible by the service user due to improper validation of relative cache object paths. The issue is addressed by improved path valid...