CVE-2021-28093

Severity CVSS v4.0:
Pending analysis
Type:
CWE-326 Inadequate Encryption Strength
Publication date:
30/07/2021
Last modified:
12/07/2022

Description

OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:open-xchange:open-xchange_documents:*:*:*:*:*:*:*:* 7.10.5 (excluding)
cpe:2.3:a:open-xchange:open-xchange_documents:7.10.5:-:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_documents:7.10.5:revision1:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_documents:7.10.5:revision2:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_documents:7.10.5:revision3:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_documents:7.10.5:revision4:*:*:*:*:*:*