Vulnerabilities > Onlyoffice > Server > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-23 CVE-2021-43444 Improper Authentication vulnerability in Onlyoffice Server 7.0.0.49
ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control.
network
low complexity
onlyoffice CWE-287
7.5
7.5
2023-01-23 CVE-2021-43447 Missing Authentication for Critical Function vulnerability in Onlyoffice Server 7.0.0.49
ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control.
network
low complexity
onlyoffice CWE-306
7.5
7.5
2023-01-23 CVE-2021-43449 Server-Side Request Forgery (SSRF) vulnerability in Onlyoffice Server 7.0.0.49
ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Server-Side Request Forgery (SSRF).
network
low complexity
onlyoffice CWE-918
8.1
8.1