CVE-2026-23623

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-23623

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23623.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-23623

Aliases

GHSA-68v6-r6qq-mmq2

Published

2026-02-05T23:38:02.338Z

Modified

2026-03-13T04:09:44.037219Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Collabora Online vulnerable to Authorization Bypass

Details

Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtain a local copy of a shared file. Although there are no corresponding buttons in the interface, pressing Ctrl+Shift+S initiates the file download process. This allows the user to bypass the access restrictions and leads to unauthorized data retrieval. This issue has been patched in Collabora Online Development Edition version 25.04.08.2 and Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5.

Database specific

{
    "cwe_ids": [
        "CWE-285"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23623.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git / github.com/collaboraonline/online

Affected ranges

Type

GIT

Repo

https://github.com/collaboraonline/online

Events

Introduced

Last affected

21776b80b5e5f7bb18e24a16d85be3b990e0d973

Last affected

0bda29418f6dfd9055470626ccc63770ff92223b

Last affected

98c62b7a598e171d6603e949845c7fb524e65970

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "Collabora Online < 25.04.7.5"
        },
        {
            "last_affected": "Collabora Online < 24.04.17.3"
        },
        {
            "last_affected": "Collabora Online < 23.05.20.1"
        }
    ]
}

Affected versions

1.*

1.6.0-0

1.6.0-4-CODE

1.6.2-1

co-23.*

co-23.05-branch-point

Other

co-4-2-0-branch-point

collabora-online-1-0-branch-point

collabora-online-1-9-branch-point

collabora-online-2-0-branch-point

collabora-online-2-1-branch-point

collabora-online-3-0-branch-point

collabora-online-4-branch-point

for-code-assets

libreoffice-5-2-branch-point

libreoffice-5-3-branch-point

libreoffice-5-4-branch-point

libreoffice-6-0-branch-point

libreoffice-6-1-branch-point

libreoffice-6-2-branch-point

libreoffice-6-3-branch-point

libreoffice-6-4-branch-point

libreoffice-7-0-branch-point

cp-21.*

cp-21.06.2-0

cp-21.11.0-0

cp-21.11.0-1

cp-21.11.0-2

cp-21.11.0-3

cp-21.11.0-4

cp-21.11.0-5

cp-21.11.0-6

cp-21.11.3-0

cp-22.*

cp-22.05.0-1

cp-22.05.10-1

cp-22.05.3-1

cp-22.05.4-1

cp-22.05.5-1

cp-22.05.5-2

cp-22.05.5-3

cp-22.05.6-1

cp-22.05.7-1

cp-22.05.7-2

cp-22.05.8-1

cp-22.05.8-2

cp-23.*

cp-23.05.0-1

cp-23.05.0-2

cp-23.05.0-3

cp-23.05.0-4

cp-23.05.0-5

cp-23.05.1-1

cp-23.05.10-1

cp-23.05.11-1

cp-23.05.12-1

cp-23.05.13-1

cp-23.05.14-1

cp-23.05.15-1

cp-23.05.16-1

cp-23.05.17-1

cp-23.05.18-1

cp-23.05.19-1

cp-23.05.2-1

cp-23.05.2-2

cp-23.05.20-1

cp-23.05.3-1

cp-23.05.4-1

cp-23.05.4-2

cp-23.05.5-1

cp-23.05.5-2

cp-23.05.7-1

cp-23.05.7-2

cp-23.05.7-3

cp-23.05.7-4

cp-23.05.7-5

cp-23.05.8-1

cp-23.05.8-2

cp-23.05.8-3

cp-23.05.8-4

cp-23.05.9-1

cp-23.05.9-2

cp-23.05.9-3

cp-23.05.9-4

cp-24.*

cp-24.04.1-1

cp-24.04.1-2

cp-24.04.1-3

cp-24.04.10-1

cp-24.04.10-2

cp-24.04.11-1

cp-24.04.11-2

cp-24.04.12-1

cp-24.04.12-2

cp-24.04.13-1

cp-24.04.13-2

cp-24.04.14-3

cp-24.04.15-3

cp-24.04.16-3

cp-24.04.17-3

cp-24.04.2-1

cp-24.04.3-1

cp-24.04.4-1

cp-24.04.5-1

cp-24.04.6-1

cp-24.04.7-1

cp-24.04.7-2

cp-24.04.8-1

cp-24.04.9-1

helm-collabora-online-1.*

helm-collabora-online-1.0.1

helm-collabora-online-1.0.2

helm-collabora-online-1.1.0

helm-collabora-online-1.1.1

helm-collabora-online-1.1.10

helm-collabora-online-1.1.11

helm-collabora-online-1.1.12

helm-collabora-online-1.1.13

helm-collabora-online-1.1.14

helm-collabora-online-1.1.15

helm-collabora-online-1.1.16

helm-collabora-online-1.1.17

helm-collabora-online-1.1.18

helm-collabora-online-1.1.19

helm-collabora-online-1.1.2

helm-collabora-online-1.1.20

helm-collabora-online-1.1.21

helm-collabora-online-1.1.22

helm-collabora-online-1.1.23

helm-collabora-online-1.1.24

helm-collabora-online-1.1.25

helm-collabora-online-1.1.26

helm-collabora-online-1.1.27

helm-collabora-online-1.1.28

helm-collabora-online-1.1.29

helm-collabora-online-1.1.3

helm-collabora-online-1.1.30

helm-collabora-online-1.1.31

helm-collabora-online-1.1.32

helm-collabora-online-1.1.33

helm-collabora-online-1.1.34

helm-collabora-online-1.1.35

helm-collabora-online-1.1.4

helm-collabora-online-1.1.5

helm-collabora-online-1.1.6

helm-collabora-online-1.1.7

helm-collabora-online-1.1.8

helm-collabora-online-1.1.9

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23623.json"