CVE-2023-29051

08.01.2024, 09:15

User-defined OXMF templates could be used to access a limited part of the internal OX App Suite Java API. The existing switch to disable the feature by default was not effective in this case. Unauthorized users could discover and modify application state, including objects related to other users and contexts. We now make sure that the switch to disable user-generated templates by default works as intended and will remove the feature in future generations of the product. No publicly available exploits are known.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.1 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
OX	CNA	8.1 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 27%

Vendor	Product	Version
open-xchange	ox_app_suite	𝑥 < 7.10.6
open-xchange	ox_app_suite	7.10.6
open-xchange	ox_app_suite	7.10.6:rev01
open-xchange	ox_app_suite	7.10.6:rev02
open-xchange	ox_app_suite	7.10.6:rev03
open-xchange	ox_app_suite	7.10.6:rev04
open-xchange	ox_app_suite	7.10.6:rev05
open-xchange	ox_app_suite	7.10.6:rev06
open-xchange	ox_app_suite	7.10.6:rev07
open-xchange	ox_app_suite	7.10.6:rev08
open-xchange	ox_app_suite	7.10.6:rev09
open-xchange	ox_app_suite	7.10.6:rev10
open-xchange	ox_app_suite	7.10.6:rev11
open-xchange	ox_app_suite	7.10.6:rev12
open-xchange	ox_app_suite	7.10.6:rev13
open-xchange	ox_app_suite	7.10.6:rev14
open-xchange	ox_app_suite	7.10.6:rev15
open-xchange	ox_app_suite	7.10.6:rev16
open-xchange	ox_app_suite	7.10.6:rev17
open-xchange	ox_app_suite	7.10.6:rev18
open-xchange	ox_app_suite	7.10.6:rev19
open-xchange	ox_app_suite	7.10.6:rev20
open-xchange	ox_app_suite	7.10.6:rev21
open-xchange	ox_app_suite	7.10.6:rev22
open-xchange	ox_app_suite	7.10.6:rev23
open-xchange	ox_app_suite	7.10.6:rev24
open-xchange	ox_app_suite	7.10.6:rev25
open-xchange	ox_app_suite	7.10.6:rev26
open-xchange	ox_app_suite	7.10.6:rev27
open-xchange	ox_app_suite	7.10.6:rev28
open-xchange	ox_app_suite	7.10.6:rev29
open-xchange	ox_app_suite	7.10.6:rev30
open-xchange	ox_app_suite	7.10.6:rev31
open-xchange	ox_app_suite	7.10.6:rev32
open-xchange	ox_app_suite	7.10.6:rev33
open-xchange	ox_app_suite	7.10.6:rev34
open-xchange	ox_app_suite	7.10.6:rev35
open-xchange	ox_app_suite	7.10.6:rev36
open-xchange	ox_app_suite	7.10.6:rev37
open-xchange	ox_app_suite	7.10.6:rev50
open-xchange	ox_app_suite	8.17

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-284 - Improper Access Control
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References

https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2023/oxas-adv-2023-0006.json

https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6251_7.10.6_2023-09-25.pdf

https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2023/oxas-adv-2023-0006.json

https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6251_7.10.6_2023-09-25.pdf