Server-side Request Forgery (SSRF) Vulnerability in Open-Xchange OX App Suite

Server-side Request Forgery (SSRF) Vulnerability in Open-Xchange OX App Suite

CVE-2018-5752 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors involving non-decimal representations of IP addresses and special IPv6 related addresses.

Learn more about our Cis Benchmark Audit For Server Software.