CVE-2022-29851 Information

Oct 26, 2022 cve

Description

documentconverter in OX App Suite through 7.10.6 in a non-default configuration with ghostscript allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document.

Reference

https://packetstormsecurity.com/files/168242/OX-App-Suite-Cross-Site-Scripting-Command-Injection.html

Share on: