CVE-2023-26456

{"id": "CVE-2023-26456", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}, {"type": "Secondary", "source": "security@open-xchange.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}]}, "published": "2023-11-02T14:15:10.940", "references": [{"url": "https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2023/oxas-adv-2023-0004.json", "source": "security@open-xchange.com"}, {"url": "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_6243_7.10.6_2023-08-01.pdf", "tags": ["Release Notes", "Vendor Advisory"], "source": "security@open-xchange.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}, {"type": "Secondary", "source": "security@open-xchange.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Users were able to set an arbitrary \"product name\" for OX Guard. The chosen value was not sufficiently sanitized before processing it at the user interface, allowing for indirect cross-site scripting attacks. Accounts that were temporarily taken over could be configured to trigger persistent code execution, allowing an attacker to build a foothold. Sanitization is in place for product names now. No publicly available exploits are known.\n\n"}, {"lang": "es", "value": "Los usuarios pudieron establecer un \"nombre de producto\" arbitrario para OX Guard. El valor elegido no se sanitizo lo suficiente antes de procesarlo en la interfaz de usuario, lo que permiti\u00f3 ataques indirectos de Cross Site Scripting. Las cuentas que fueron tomadas temporalmente podr\u00edan configurarse para desencadenar la ejecuci\u00f3n de c\u00f3digo persistente, lo que permitir\u00eda a un atacante establecerse. La sanitizaci\u00f3n ya est\u00e1 implementada para los nombres de los productos. No se conocen exploits disponibles p\u00fablicamente."}], "lastModified": "2024-01-12T08:15:42.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:open-xchange:ox_guard:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6664DDB-A2AF-4052-B94F-007AA6C39F24", "versionEndExcluding": "2.10.7"}, {"criteria": "cpe:2.3:a:open-xchange:ox_guard:2.10.7:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C7C4678-E325-45CE-BE47-E30E1536642C"}, {"criteria": "cpe:2.3:a:open-xchange:ox_guard:2.10.7:rev4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0443570E-ABA7-4F23-9B5C-B6FD78D7A318"}, {"criteria": "cpe:2.3:a:open-xchange:ox_guard:2.10.7:rev5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83773F6B-A937-4194-B194-DA1FDADC7CFB"}, {"criteria": "cpe:2.3:a:open-xchange:ox_guard:2.10.7:rev6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5A11B45-E1B5-4C50-B7D0-8BF965103866"}], "operator": "OR"}]}], "sourceIdentifier": "security@open-xchange.com"}