CVE-2023-26435
MEDIUMopen-xchange_appsuite_backend < 7.10.6 - Server-Side Request Forgery via Manipulated ODT Documents
Title source: llmDescription
It was possible to call filesystem and network references using the local LibreOffice instance using manipulated ODT documents. Attackers could discover restricted network topology and services as well as including local files with read permissions of the open-xchange system user. This was limited to specific file-types, like images. We have improved existing content filters and validators to avoid including any local resources. No publicly available exploits are known.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/173083/OX-App-Suite-SSRF-Resource-Consumption-Command-Injection.html
Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Jun/8
Release Notes release-notes
https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6219_7.10.6_2023-03-20.pdf
Vendor Advisory vendor-advisory
https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2023/oxas-adv-2023-0002.json
Scores
CVSS v3
5.0
EPSS
0.0018
EPSS Percentile
38.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Details
CWE
CWE-918
Status
published
Products (2)
open-xchange/open-xchange_appsuite_backend
7.10.6 (2 CPE variants)
open-xchange/open-xchange_appsuite_backend
< 7.10.6
Published
Jun 20, 2023
Tracked Since
Feb 18, 2026