25 matches found
CVE-2021-28094
OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents because hash collisions can occur, due to use of CRC32...
EUVD-2021-14799
Malware in sbrugna...
EUVD-2021-14798
Malware in sbrugna...
CVE-2021-28093
OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32...
OX App Suite / Ox Documents 7.10.x XSS / Code Injection / Traversal
Product: OX App Suite, OX Documents Vendor: OX Software GmbH Internal reference: MWB-993 Vulnerability type: Cross-Site Scripting CWE-80 Vulnerable version: 7.10.5 and earlier Vulnerable component: backend Report confidence: Confirmed Solution status: Fixed by Vendor Fixed version: 7.10.3-rev35,...
OX App Suite / Ox Documents 7.10.x XSS / Code Injection / Traversal Vulnerability
OX App Suite and OX Documents suffer from cross site scripting, code injection, path traversal, and input validation vulnerabilities. Most of these issues affect 7.10.5 and below with one affecting 7.10.4 and below. Product: OX App Suite, OX Documents Vendor: OX Software GmbH Internal reference:...
CVE-2021-28093
OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32...
CVE-2021-28095
OX Documents before 7.10.5-rev5 has Incorrect Access Control for documents that contain XML structures because hash collisions can occur, due to use of CRC32...
CVE-2021-28093
OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32...
CVE-2021-28094
OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents because hash collisions can occur, due to use of CRC32...
CVE-2021-28094
OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents because hash collisions can occur, due to use of CRC32...
CVE-2021-28095
OX Documents before 7.10.5-rev5 has Incorrect Access Control for documents that contain XML structures because hash collisions can occur, due to use of CRC32...
Design/Logic Flaw
OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32...
CVE-2021-28095
OX Documents prior to 7.10.5-rev5 contains an Incorrect Access Control flaw for documents containing XML structures, allowing hash collisions due to the use of CRC32. Affects Open-Xchange OX Documents; CVE-2021-28095. No exploitation details are provided in the supplied documents. Remediation sta...
CVE-2021-28095
OX Documents before 7.10.5-rev5 has Incorrect Access Control for documents that contain XML structures because hash collisions can occur, due to use of CRC32...
CVE-2021-28093
OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32...
CVE-2021-28093
OX Documents before 7.10.5-rev5 has an Incorrect Access Control of converted images due to hash collisions from Adler32. Root cause: Adler32-based hashing can collide, enabling access control bypass. Impact: partial confidentiality/integrity concerns with converted images; CVSS metrics indicate M...
CVE-2021-28094
OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents because hash collisions can occur, due to use of CRC32...
CVE-2021-28094
OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents due to hash collisions from CRC32. Affected product: Open-Xchange OX Documents (pre-7.10.5-rev7). Root cause: CRC32-based hash collisions lead to improper access control. Impact: described as an access control is...
Open-xchange OX Documents 加密问题漏洞
Open-xchange OX Documents is an office software suite from the American company Open-xchange. The product supports the creation and editing of text documents, spreadsheets, presentations, and more. OX Documents is vulnerable to a cryptographic issue that arises from a lack of authentication...