Vulnerabilities > CVE-2019-14226 - Improper Preservation of Permissions vulnerability in Open-Xchange Appsuite

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

NVD

Published: 2019-10-14

Updated: 2019-10-17

Summary

OX App Suite through 7.10.2 has Insecure Permissions.

Part	Description	Count
Application	Open-Xchange Open Xchange Open Xchange Appsuite 6.20.7 Open Xchange Open Xchange Appsuite 6.22.0 Open Xchange Open Xchange Appsuite 6.22.1 Open Xchange Open Xchange Appsuite 6.22.3 Open Xchange Open Xchange Appsuite 6.22.4 Open Xchange Open Xchange Appsuite 7.0.1 Open Xchange Open Xchange Appsuite 7.0.2 Open Xchange Open Xchange Appsuite 7.2.0 Open Xchange Open Xchange Appsuite 7.2.1 Open Xchange Open Xchange Appsuite 7.2.2 Open Xchange Open Xchange Appsuite 7.4.0 Open Xchange Open Xchange Appsuite 7.4.1 Open Xchange Open Xchange Appsuite 7.4.2 Open Xchange Open Xchange Appsuite 7.6.0 Open Xchange Open Xchange Appsuite 7.6.1 Open Xchange Open Xchange Appsuite 7.6.2 Open Xchange Open Xchange Appsuite 7.6.3 Open Xchange Open Xchange Appsuite 7.8.0 Open Xchange Open Xchange Appsuite 7.8.1 Open Xchange Open Xchange Appsuite 7.8.2 Open Xchange Open Xchange Appsuite 7.8.3 Open Xchange Open Xchange Appsuite 7.8.4 Open Xchange Open Xchange Appsuite 7.10.0 Open Xchange Open Xchange Appsuite 7.10.1 Open Xchange Open Xchange Appsuite 7.10.2	241

data source	https://packetstormsecurity.com/files/download/154826/oxappsuite-ssrfxssdisclose.txt
id	PACKETSTORM:154826
last seen	2019-10-15
published	2019-10-14
reporter	MantiS
source	https://packetstormsecurity.com/files/154826/Open-Xchange-OX-App-Suite-SSRF-XSS-Information-Disclosure-Access-Controls.html
title	Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls