Vulnerabilities > Open Xchange > OX APP Suite > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-08 | CVE-2023-29048 | OS Command Injection vulnerability in Open-Xchange OX APP Suite 7.10.5/7.10.6 A component for parsing OXMF templates could be abused to execute arbitrary system commands that would be executed as the non-privileged runtime user. | 8.8 |
| 2024-01-08 | CVE-2023-29051 | Unspecified vulnerability in Open-Xchange OX APP Suite 7.10.5/7.10.6/8.17 User-defined OXMF templates could be used to access a limited part of the internal OX App Suite Java API. | 8.1 |