The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x prior to 7.0.2-rev15 and 7.2.x prior to 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which makes it easier for remote malicious users to obtain access by sending network traffic from an unintended location, a different vulnerability than CVE-2013-5200.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open-xchange open-xchange appsuite 7.0.1 |
||
open-xchange open-xchange appsuite 7.0.2 |
||
open-xchange open-xchange appsuite 7.2.1 |
||
open-xchange open-xchange appsuite 7.2.0 |