Design/Logic Flaw

2023-11-0214:15:00

PRIOn knowledge base

www.prio-n.com

cache abuse

sql queries

access control

error logging

public exploits

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.5%

JSON

Requests to cache an image and return its metadata could be abused to include SQL queries that would be executed unchecked. Exploiting this vulnerability requires at least access to adjacent networks of the imageconverter service, which is not exposed to public networks by default. Arbitrary SQL statements could be executed in the context of the services database user account. API requests are now properly checked for valid content and attempts to circumvent this check are being logged as error. No publicly available exploits are known.

CPENameOperatorVersion
open-xchange_appsuiteeq7.10.6
open-xchange_appsuiteeq7.10.6 patchrelease6069
open-xchange_appsuiteeq7.10.6 patchrelease6073
open-xchange_appsuiteeq7.10.6 patchrelease6080
open-xchange_appsuiteeq7.10.6 patchrelease6085
open-xchange_appsuiteeq7.10.6 patchrelease6093
open-xchange_appsuiteeq7.10.6 patchrelease6102
open-xchange_appsuiteeq7.10.6 patchrelease6112
open-xchange_appsuiteeq7.10.6 patchrelease6121
open-xchange_appsuiteeq7.10.6 patchrelease6133

Name	Operator	Version
open-xchange_appsuite	eq	7.10.6
open-xchange_appsuite	eq	7.10.6 patchrelease6069
open-xchange_appsuite	eq	7.10.6 patchrelease6073
open-xchange_appsuite	eq	7.10.6 patchrelease6080
open-xchange_appsuite	eq	7.10.6 patchrelease6085
open-xchange_appsuite	eq	7.10.6 patchrelease6093
open-xchange_appsuite	eq	7.10.6 patchrelease6102
open-xchange_appsuite	eq	7.10.6 patchrelease6112
open-xchange_appsuite	eq	7.10.6 patchrelease6121
open-xchange_appsuite	eq	7.10.6 patchrelease6133