Shodan
Vulnerabilities
Vulnerable Software
Open-Xchange:  >> Ox App Suite  Security Vulnerabilities
CVE-2021-44213
OX App Suite through 7.10.5 allows XSS via uuencoding in a multipart/alternative message.
CVSS Score
6.1
EPSS Score
0.003
Published
2022-03-28
CVE-2021-44208
OX App Suite through 7.10.5 allows XSS via an unknown system message in Chat.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-28
CVE-2021-44209
OX App Suite through 7.10.5 allows XSS via an HTML 5 element such as AUDIO.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-28
CVE-2021-44210
OX App Suite through 7.10.5 allows XSS via NIFF (Notation Interchange File Format) data.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-28
CVE-2021-44211
OX App Suite through 7.10.5 allows XSS via the class attribute of an element in an HTML e-mail signature.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-03-28
CVE-2021-33491
OX App Suite through 7.10.5 allows Directory Traversal via ../ in an OOXML or ODF ZIP archive, because of the mishandling of relative paths in mail addresses in conjunction with auto-configuration DNS records.
CVSS Score
6.5
EPSS Score
0.044
Published
2021-11-22
CVE-2021-33492
OX App Suite 7.10.5 allows XSS via an OX Chat room name.
CVSS Score
6.1
EPSS Score
0.005
Published
2021-11-22
CVE-2021-33493
The middleware component in OX App Suite through 7.10.5 allows Code Injection via Java classes in a YAML format.
CVSS Score
6.0
EPSS Score
0.002
Published
2021-11-22
CVE-2021-33494
OX App Suite 7.10.5 allows XSS via an OX Chat room title during typing rendering.
CVSS Score
6.1
EPSS Score
0.005
Published
2021-11-22
CVE-2021-33495
OX App Suite 7.10.5 allows XSS via an OX Chat system message.
CVSS Score
6.1
EPSS Score
0.003
Published
2021-11-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved