CVE-2014-5238
14.01.2020, 16:15
XML external entity (XXE) vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev11 and 7.6.x before 7.6.0-rev9 allows remote attackers to read arbitrary files and possibly other unspecified impact via a crafted OpenDocument Text document.Enginsight
| Vendor | Product | Version |
|---|---|---|
| open-xchange | open-xchange_appsuite | 𝑥 ≤ 7.4.1 |
| open-xchange | open-xchange_appsuite | 7.4.2 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision1 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision10 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision2 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision3 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision4 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision5 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision6 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision7 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision8 |
| open-xchange | open-xchange_appsuite | 7.4.2:revision9 |
| open-xchange | open-xchange_appsuite | 7.6.0 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision1 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision2 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision3 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision4 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision5 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision6 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision7 |
| open-xchange | open-xchange_appsuite | 7.6.0:revision8 |
𝑥
= Vulnerable software versions
References