CVE-2016-6854 in OX Guard정보

요약

\~에 의해 MITRE

An issue was discovered in Open-Xchange OX Guard before 2.4.2-rev5. Script code which got injected to a mail with inline PGP signature gets executed when verifying the signature. Malicious script code can be executed within a user's context. This can lead to session hijacking or triggering unwanted actions via the web interface (sending mail, deleting data etc.).

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2016. 08. 18.

공개

2016. 12. 15.

모더레이션

수락

항목

VDB-94525

CPE

준비됨

CWE

CWE-79 (확인됨)

익스플로잇

다운로드

CVSS

6.1 (NVD)

EPSS

0.00768

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6854
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6854
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6854/

◂ 이전 개요 다음 ▸

Interested in the pricing of exploits?

See the underground prices here!