Vulnerabilities > CVE-2019-14225 - Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange Appsuite 7.10.1/7.10.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
OX App Suite 7.10.1 and 7.10.2 allows SSRF.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Common Weakness Enumeration (CWE)
Packetstorm
| data source | https://packetstormsecurity.com/files/download/154826/oxappsuite-ssrfxssdisclose.txt |
| id | PACKETSTORM:154826 |
| last seen | 2019-10-15 |
| published | 2019-10-14 |
| reporter | MantiS |
| source | https://packetstormsecurity.com/files/154826/Open-Xchange-OX-App-Suite-SSRF-XSS-Information-Disclosure-Access-Controls.html |
| title | Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls |
References
- http://packetstormsecurity.com/files/154826/Open-Xchange-OX-App-Suite-SSRF-XSS-Information-Disclosure-Access-Controls.html
- http://packetstormsecurity.com/files/154826/Open-Xchange-OX-App-Suite-SSRF-XSS-Information-Disclosure-Access-Controls.html
- https://seclists.org/fulldisclosure/2019/Oct/25
- https://seclists.org/fulldisclosure/2019/Oct/25