Skip to main content

Open Xchange Appsuite Backend CVE-2023-26430

MEDIUM
Command Injection (CWE-77)
2023-08-02 security@open-xchange.com
4.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Aug 02, 2023 - 13:15 nvd
MEDIUM 4.3

DescriptionNVD

Attackers with access to user accounts can inject arbitrary control characters to SIEVE mail-filter rules. This could be abused to access SIEVE extension that are not allowed by App Suite or to inject rules which would break per-user filter processing, requiring manual cleanup of such rules. We have added sanitization to all mail-filter APIs to avoid forwardning control characters to subsystems. No publicly available exploits are known.

AnalysisAI

Attackers with access to user accounts can inject arbitrary control characters to SIEVE mail-filter rules. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Command Injection (CWE-77), which allows attackers to inject arbitrary commands into system command execution. Attackers with access to user accounts can inject arbitrary control characters to SIEVE mail-filter rules. This could be abused to access SIEVE extension that are not allowed by App Suite or to inject rules which would break per-user filter processing, requiring manual cleanup of such rules. We have added sanitization to all mail-filter APIs to avoid forwardning control characters to subsystems. No publicly available exploits are known. Affected products include: Open-Xchange Open-Xchange Appsuite Backend.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use parameterized APIs, avoid shell execution, validate input with strict allowlists.

CVE-2023-26443 CRITICAL
9.8 Aug 02

Full-text autocomplete search allows user-provided SQL syntax to be injected to SQL statements. Rated critical severity

CVE-2023-26436 HIGH
8.8 Jun 20

Attackers with access to the "documentconverterws" API were able to inject serialized Java objects, that were not proper

CVE-2023-26451 HIGH
7.5 Aug 02

Functions with insufficient randomness were used to generate authorization tokens of the integrated oAuth Authorization

CVE-2023-26428 MEDIUM
6.5 Jun 20

Attackers can successfully request arbitrary snippet IDs, including E-Mail signatures of other users within the same con

CVE-2016-6846 MEDIUM
6.1 Mar 29

Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite backend before 7.6.2-rev59, 7.8.0 before 7.8.0-re

CVE-2023-26429 MEDIUM
5.3 Jun 20

Control characters were not removed when exporting user feedback content. Rated medium severity (CVSS 5.3), this vulnera

CVE-2023-26435 MEDIUM
5.0 Jun 20

It was possible to call filesystem and network references using the local LibreOffice instance using manipulated ODT doc

CVE-2023-26434 MEDIUM
4.3 Jun 20

When adding an external mail account, processing of POP3 "capabilities" responses are not limited to plausible sizes. Ra

CVE-2023-26433 MEDIUM
4.3 Jun 20

When adding an external mail account, processing of IMAP "capabilities" responses are not limited to plausible sizes. Ra

CVE-2023-26432 MEDIUM
4.3 Jun 20

When adding an external mail account, processing of SMTP "capabilities" responses are not limited to plausible sizes. Ra

CVE-2023-26431 MEDIUM
4.3 Jun 20

IPv4-mapped IPv6 addresses did not get recognized as "local" by the code and a connection attempt is made. Rated medium

CVE-2023-26427 LOW
3.3 Jun 20

Default permissions for a properties file were too permissive. Rated low severity (CVSS 3.3), this vulnerability is low

Share

CVE-2023-26430 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy