CVE-2026-25511

216.73.216.233

· Published 04/02/2026 21:16 · Modified 05/02/2026 21:15

Labels: CVE-2026-25511 2026-02-04 CVE-2026-25511 CWE-918 [email protected]

Essential information

Published: 04/02/2026 21:16
Modified: 05/02/2026 21:15
Author: —
Creator: —
CVSS: 8.2 HIGH (v3) 8.2 HIGH (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, an authenticated user within the System Administrator group can trigger a full SSRF via the WOPI service discovery URL, including access to internal hosts/ports. The SSRF response body can be exfiltrated via the built‑in debug system, turning it into a visible SSRF. This also allows full server-side file read. This issue has been patched in versions 6.8.150, 25.0.82, and 26.0.5.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
group-office / group-office	`cpe:2.3:a:group-office:group-office:<6.8.150:::::::*`
group-office / group-office	`cpe:2.3:a:group-office:group-office:<25.0.82:::::::*`
group-office / group-office	`cpe:2.3:a:group-office:group-office:<26.0.5:::::::*`