Improper handling of browser-side provided input in richdocuments path handling
CVE-2023-49788

7.2HIGH

Key Information:

Vendor: CollaboraOnline
Status: online
Vendor: CVE Published:; 8 December 2023

Summary

Collabora Online's Built-in CODE Server has a vulnerability that allows for file overwriting due to a lack of chroot sandboxing. Attack vectors exploit modified client-to-server commands, potentially providing unauthorized access to files outside the intended directory. Users are recommended to upgrade to version 23.5.602 or later to avoid these risks, as there are no known workarounds to mitigate the issue.

Affected Version(s)

online < 23.5.602

References

https://github.com/CollaboraOnline/online/security/adviso...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 8, 2023
Vulnerability Reserved
Nov 30, 2023