2 matches found
CVE-2023-29044
Documents operations could be manipulated to contain invalid data types, possibly script code. Script code could be injected to an operation that would be executed for users that are actively collaborating on the same document. Operation data exchanged between collaborating parties does now get...
CVE-2023-29044
CVE-2023-29044 describes a cross-document collaboration flaw where operations could contain invalid data types and potentially script code, enabling code execution for users collaborating on the same document. Multiple connected sources (Open-Xchange App Suite, Red Hat advisory, Google Docs conte...