Vulnerabilities > CVE-2023-46730 - Server-Side Request Forgery (SSRF) vulnerability in Group-Office Group Office

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
group-office
CWE-918
NVD
Published: 2023-11-07
Updated: 2023-11-14

Summary

Group-Office is an enterprise CRM and groupware tool. In affected versions there is full Server-Side Request Forgery (SSRF) vulnerability in the /api/upload.php endpoint. The /api/upload.php endpoint does not filter URLs which allows a malicious user to cause the server to make resource requests to untrusted domains. Note that protocols like file:// can also be used to access the server disk. The request result (on success) can then be retrieved using /api/download.php. This issue has been addressed in versions 6.8.15, 6.7.54, and 6.6.177. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Vulnerable Configurations

Part Description Count
Application
Group-Office
465

Common Weakness Enumeration (CWE)

References