{ "affected": [ { "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2b6ad83b36afd9845085b536969d366d1d61150a" } ], "repo": "https://github.com/onlyoffice/core", "type": "GIT" }, { "database_specific": { "versions": [ { "introduced": "4.0.3" }, { "last_affected": "7.3.2" } ] }, "events": [ { "introduced": "0ac557c60e9dacfe890631fddade941414261203" }, { "last_affected": "21ecdc5d2cff555e679a4096dff0ee2835268a85" } ], "repo": "https://github.com/onlyoffice/documentserver", "type": "GIT" } ] } ], "details": "A use after free issue discovered in ONLYOFFICE DocumentServer 4.0.3 through 7.3.2 allows remote attackers to run arbitrary code via crafted JavaScript file.", "id": "CVE-2023-30186", "modified": "2026-04-01T23:09:01.288787999Z", "published": "2023-08-14T13:15:10.420Z", "references": [ { "type": "WEB", "url": "https://github.com/ONLYOFFICE/core/blob/8ca40a44ce47a86168327a46db91253cf6bb205d/DesktopEditor/doctrenderer/embed/NativeControlEmbed.cpp#L110" }, { "type": "WEB", "url": "http://onlyoffice.com" }, { "type": "WEB", "url": "https://github.com/ONLYOFFICE/core/blob/8ca40a44ce47a86168327a46db91253cf6bb205d/DesktopEditor/doctrenderer/" }, { "type": "FIX", "url": "https://github.com/ONLYOFFICE/core/commit/2b6ad83b36afd9845085b536969d366d1d61150a" }, { "type": "FIX", "url": "https://gist.github.com/merrychap/25eba8c4dd97c9e545edad1b8f0eadc2" }, { "type": "PACKAGE", "url": "https://github.com/ONLYOFFICE/DocumentServer" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }