Open-xchange

256 tracked vulnerabilities.

CVE-2024-4367 HIGH
Mozilla Firefox < 115.11.0 - Improper Condition Check
May 14, 2024
CVSS 8.8
EPSS 0.35
CVE-2024-23193 MEDIUM
Open-xchange OX App Suite < 8.22 - Information Disclosure
May 06, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-23187 MEDIUM
Open-xchange OX App Suite < 8.22 - XSS
May 06, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-23186 MEDIUM
Open-xchange OX App Suite < 8.22 - XSS
May 06, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-41708 MEDIUM
Open-xchange Appsuite < 7.10.6 - XSS
Feb 12, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-41707 MEDIUM
Open-xchange Appsuite < 7.6.3 - Denial of Service
Feb 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-41706 MEDIUM
Open-xchange Appsuite < 7.6.3 - Denial of Service
Feb 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-41705 MEDIUM
Open-xchange Appsuite < 7.6.3 - Denial of Service
Feb 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-41704 HIGH
Open-xchange Appsuite < 7.6.3 - XSS
Feb 12, 2024
CVSS 7.1
EPSS 0.00
CVE-2023-41703 MEDIUM
Open-xchange Appsuite < 7.10.6 - XSS
Feb 12, 2024
CVSS 6.1
EPSS 0.01
CVE-2023-41710 MEDIUM
Open-xchange OX App Suite < 7.10.6 - XSS
Jan 08, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-29052 MEDIUM
Shopify - XSS
Jan 08, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-29051 HIGH
OX App Suite - Info Disclosure
Jan 08, 2024
CVSS 8.1
EPSS 0.00
CVE-2023-29050 HIGH
LDAP contacts provider - Info Disclosure
Jan 08, 2024
CVSS 7.6
EPSS 0.00
CVE-2023-29049 MEDIUM
Portal - XSS
Jan 08, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-29048 HIGH
OXMF Template Engine - Command Injection
Jan 08, 2024
CVSS 8.8
EPSS 0.00
CVE-2023-29047 MEDIUM
Imageconverter - SQL Injection
Nov 02, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-29046 MEDIUM
Unknown - SSRF
Nov 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-29045 MEDIUM
Unknown - Code Injection
Nov 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-29044 MEDIUM
Documents - Code Injection
Nov 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-29043 MEDIUM
Unknown - XSS
Nov 02, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-26456 MEDIUM
OX Guard - XSS
Nov 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-26455 MEDIUM
ChronosRMIService - RCE
Nov 02, 2023
CVSS 5.6
EPSS 0.00
CVE-2023-26454 HIGH
Imageconverter - SQL Injection
Nov 02, 2023
CVSS 7.6
EPSS 0.00
CVE-2023-26453 HIGH
Imageconverter - SQL Injection
Nov 02, 2023
CVSS 7.6
EPSS 0.00
Products
open-xchange_appsuite 157 ox_app_suite 48 open-xchange_appsuite_backend 14 open-xchange_server 13 ox_guard 11 open-xchange_appsuite_frontend 8 open-xchange_appsuite_office 4 open-xchange_documents 3 open-xchange 2 app_suite 2 office_web 1 ox_cloud 1 documentconverter-api 1
Quick Filters
Critical CVEs With Exploits In CISA KEV