A cross-site scripting vulnerability has been identified in Open-Xchange OX App Suite office versions 8.35.1513817, 8.39.1565928, 8.40.1565934, and 8.41.1523927. This vulnerability allows malicious content in office documents to inject script code during document editing. As a result, unintended actions could be performed within the context of the user's account, potentially leading to the exfiltration of sensitive information.
Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user's account.
Users are advised to update to OX App Suite office versions 8.35.1513818, 8.39.1565929, 8.40.1565935, or 8.41.1523928.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
