CVE-2022-23100 Information

Description

OX App Suite through 7.10.6 allows OS Command Injection via Documentconverter (e.g. through an email attachment).

Reference

https://seclists.org/fulldisclosure/2022/Jul/11 https://open-xchange.com