CVE-2020-11535

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-11535
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11535.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2020-11535
Published
2020-04-15T15:15:19.683Z
Modified
2025-11-14T10:10:10.013010Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit XML injection to enter an attacker-controlled parameter into the x2t binary, to rewrite this binary and/or libxcb.so.1, and execute code on a victim's server.

References

Affected packages

Git / github.com/onlyoffice/documentserver

Affected ranges

Type
GIT
Repo
https://github.com/onlyoffice/documentserver
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d93c9b34667f5ed750309997bd84e9cde5cff213

Affected versions

ONLYOFFICE-DocumentServer-3.*

ONLYOFFICE-DocumentServer-3.0.0

ONLYOFFICE-DocumentServer-4.*

ONLYOFFICE-DocumentServer-4.0.0-9
ONLYOFFICE-DocumentServer-4.0.1-34
ONLYOFFICE-DocumentServer-4.0.2-4
ONLYOFFICE-DocumentServer-4.0.3-3
ONLYOFFICE-DocumentServer-4.1.2-37
ONLYOFFICE-DocumentServer-4.1.4-3
ONLYOFFICE-DocumentServer-4.1.5-1
ONLYOFFICE-DocumentServer-4.1.6-3
ONLYOFFICE-DocumentServer-4.1.8-1
ONLYOFFICE-DocumentServer-4.2.0
ONLYOFFICE-DocumentServer-4.2.1
ONLYOFFICE-DocumentServer-4.2.10
ONLYOFFICE-DocumentServer-4.2.11
ONLYOFFICE-DocumentServer-4.2.3
ONLYOFFICE-DocumentServer-4.2.4
ONLYOFFICE-DocumentServer-4.2.5
ONLYOFFICE-DocumentServer-4.2.7
ONLYOFFICE-DocumentServer-4.2.8
ONLYOFFICE-DocumentServer-4.2.9
ONLYOFFICE-DocumentServer-4.3.0
ONLYOFFICE-DocumentServer-4.3.1
ONLYOFFICE-DocumentServer-4.3.2
ONLYOFFICE-DocumentServer-4.3.3
ONLYOFFICE-DocumentServer-4.3.4
ONLYOFFICE-DocumentServer-4.3.5
ONLYOFFICE-DocumentServer-4.3.6
ONLYOFFICE-DocumentServer-4.4.1
ONLYOFFICE-DocumentServer-4.4.2
ONLYOFFICE-DocumentServer-4.4.3

ONLYOFFICE-DocumentServer-5.*

ONLYOFFICE-DocumentServer-5.0.3
ONLYOFFICE-DocumentServer-5.0.4
ONLYOFFICE-DocumentServer-5.0.5
ONLYOFFICE-DocumentServer-5.0.6
ONLYOFFICE-DocumentServer-5.0.7
ONLYOFFICE-DocumentServer-5.1.0
ONLYOFFICE-DocumentServer-5.1.1
ONLYOFFICE-DocumentServer-5.1.2
ONLYOFFICE-DocumentServer-5.1.3
ONLYOFFICE-DocumentServer-5.1.4
ONLYOFFICE-DocumentServer-5.1.5
ONLYOFFICE-DocumentServer-5.2.0
ONLYOFFICE-DocumentServer-5.2.2
ONLYOFFICE-DocumentServer-5.2.3
ONLYOFFICE-DocumentServer-5.2.4
ONLYOFFICE-DocumentServer-5.2.6
ONLYOFFICE-DocumentServer-5.2.7
ONLYOFFICE-DocumentServer-5.2.8
ONLYOFFICE-DocumentServer-5.3.0
ONLYOFFICE-DocumentServer-5.3.1
ONLYOFFICE-DocumentServer-5.3.2
ONLYOFFICE-DocumentServer-5.3.4
ONLYOFFICE-DocumentServer-5.4.0-2
ONLYOFFICE-DocumentServer-5.4.1
ONLYOFFICE-DocumentServer-5.4.2
ONLYOFFICE-DocumentServer-5.5.0

ONLYOFFICE-Online-Editors-2.*

ONLYOFFICE-Online-Editors-2.5
ONLYOFFICE-Online-Editors-2.5.7

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11535.json"