4 matches found
CVE-2023-24604
OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data...
CVE-2023-24604
OX App Suite before backend 7.10.6-rev37 does not validate HTTP header lengths when downloading data (e.g., iCal feeds), potentially allowing unlimited header data exposure. Affected product/version: OX App Suite prior to 7.10.6-rev37. CVSS 3.1 base score 4.3 (MEDIUM). Remediation: update to 7.10...
CVE-2023-24604
OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data...
CVE-2023-24604
OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data...