CVE-2023-29050 | Open-Xchange OX App Suite up to 7.10.6-rev50/8.16 LDAP Contacts Provider ldap injection (oxas-adv-2023-0005)

Inserito da Angelo Barbosa | Gen 8, 2024 | CVE

A vulnerability was found in Open-Xchange OX App Suite up to 7.10.6-rev50/8.16. It has been rated as critical. Affected by this issue is some unknown functionality of the component LDAP Contacts Provider. The manipulation leads to ldap injection.

This vulnerability is handled as CVE-2023-29050. The attack may be launched remotely. There is no exploit available.

CVE-2023-29050 | Open-Xchange OX App Suite up to 7.10.6-rev50/8.16 LDAP Contacts Provider ldap injection (oxas-adv-2023-0005)

Post correlati

CVE-2024-26899 | Linux Kernel up to 6.7.10/6.8.1 block bd_link_disk_holder race condition (1e5c5b0abaee/5a87c1f7993b/03f12122b20b)

CVE-2024-35889 | Linux Kernel up to 6.8.4 idpf_rx_process_skb_fields denial of service (b4d28f7fa4dd/dd19e827d63a)

CVE-2024-0990 | Tenda i6 1.0.0.9(3857) httpd /goform/setAutoPing formSetAutoPing ping1 stack-based overflow

CVE-2024-41817 | ImageMagick up to 7.11-35 MAGICK_CONFIGURE_PATH/LD_LIBRARY_PATH uncontrolled search path (GHSA-8rxc-922v-phg8)