CVE-2022-43698
- Source
- https://cve.org/CVERecord?id=CVE-2022-43698
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-43698.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-43698
- Published
- 2023-04-15T02:15:07.183Z
- Modified
- 2026-04-10T04:52:09.468964Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
OX App Suite before 7.10.6-rev30 allows SSRF because changing a POP3 account disregards the deny-list.
- References
Affected packages
Git / github.com/open-xchange/appsuite-frontend
Affected ranges
- Type
- GIT
- Repo
- https://github.com/open-xchange/appsuite-frontend
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "7.10.6" }, { "introduced": "0" }, { "last_affected": "7.10.6-NA" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev10" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev11" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev12" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev13" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev14" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev15" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev16" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev17" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev18" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev19" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev20" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev21" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev22" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev23" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev24" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev25" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev26" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev27" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev28" }, { "introduced": "0" }, { "last_affected": "7.10.6-rev29" } ] }
Affected versions
7.*
7.10.0-0
7.10.0-2
7.10.3-0
7.10.4-0
7.10.4-1
7.10.5-0
7.10.5-1
7.10.5-2
7.10.6-0
7.10.6-10
7.10.6-11
7.10.6-12
7.10.6-13
7.10.6-14
7.10.6-15
7.10.6-16
7.10.6-17
7.10.6-18
7.10.6-19
7.10.6-20
7.10.6-21
7.10.6-22
7.10.6-23
7.10.6-24
7.10.6-25
7.10.6-26
7.10.6-27
7.10.6-28
7.10.6-29
7.4.1-6
7.6.2-13
7.6.2-16
7.6.2-18
7.6.2-19
7.6.2-22
7.6.2-23
7.6.2-24
7.8.0-10
7.8.0-11
7.8.0-12
7.8.0-19
7.8.0-7
7.8.0-8
7.8.1-10
7.8.1-11
7.8.1-14
7.8.2-14
7.8.2-16
7.8.2-5
7.8.2-6
7.8.2-7
7.8.2-9
7.8.3-10
7.8.3-9
Other
as-next
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-43698.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev01"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev02"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev03"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev04"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev05"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev06"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev07"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev08"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.10.6-rev09"
}
]
}
]