Vulnerabilities > CVE-2019-18846 - Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange Appsuite

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
open-xchange
CWE-918

Summary

OX App Suite through 7.10.2 allows SSRF.

Common Weakness Enumeration (CWE)

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/156474/oxappsuite-ssrf.txt
idPACKETSTORM:156474
last seen2020-02-23
published2020-02-21
reporterMartin Heiland
sourcehttps://packetstormsecurity.com/files/156474/Open-Xchange-App-Suite-Documents-Server-Side-Request-Forgery.html
titleOpen-Xchange App Suite / Documents Server-Side Request Forgery