CVE-2014-9466

Open-Xchange (OX) AppSuite and Server before 7.4.2-rev42, 7.6.0 before 7.6.0-rev36, and 7.6.1 before 7.6.1-rev14 does not properly handle directory permissions, which allows remote authenticated users to read files via unspecified vectors, related to the "folder identifier."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:open-xchange:open-xchange_appsuite:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_appsuite:7.6.0:*:*:*:*:*:*:*
cpe:2.3:a:open-xchange:open-xchange_appsuite:7.6.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-02-17 15:59

Updated : 2023-12-10 11:31


NVD link : CVE-2014-9466

Mitre link : CVE-2014-9466

CVE.ORG link : CVE-2014-9466


JSON object : View

Products Affected

open-xchange

  • open-xchange_appsuite
CWE
CWE-264

Permissions, Privileges, and Access Controls