Vulnerabilities > CVE-2021-23927 - Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange Appsuite
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
OX App Suite through 7.10.4 allows SSRF via a URL with an @ character in an appsuite/api/oauth/proxy PUT request.