Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 does not properly check for folder-to-object association, which allows remote authenticated users to delete arbitrary tasks via the task id in a delete action to api/tasks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Open-Xchange OX App Suite后端组件安全漏洞
Vulnerability Description
Open-Xchange OX App Suite是美国Open-Xchange公司的一套Web云桌面环境。该环境允许用户更直观的管理电子邮件、任务和文件等。 Open-Xchange OX App Suite中的后端组件存在安全漏洞,该漏洞源于程序没有对文件夹到对象的关联执行正确的检测。远程攻击者可在删除操作中借助任务ID利用该漏洞删除任意任务。以下版本受到影响:Open-Xchange OX App Suite 7.6.3-rev36之前的版本,7.8.2-rev39之前的7.8.x版本,7.8.3-
CVSS Information
N/A
Vulnerability Type
N/A