CVE-2023-24598
First published: Mon May 29 2023(Updated: )
OX App Suite before backend 7.10.6-rev37 has an information leak in the handling of distribution lists, e.g., partial disclosure of the private contacts of another user.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Open-xchange Ox App Suite | =7.10.6-rev01 | |
| Open-xchange Ox App Suite | =7.10.6-rev02 | |
| Open-xchange Ox App Suite | =7.10.6-rev03 | |
| Open-xchange Ox App Suite | =7.10.6-rev04 | |
| Open-xchange Ox App Suite | =7.10.6-rev05 | |
| Open-xchange Ox App Suite | =7.10.6-rev06 | |
| Open-xchange Ox App Suite | =7.10.6-rev07 | |
| Open-xchange Ox App Suite | =7.10.6-rev08 | |
| Open-xchange Ox App Suite | =7.10.6-rev09 | |
| Open-xchange Ox App Suite | =7.10.6-rev10 | |
| Open-xchange Ox App Suite | =7.10.6-rev11 | |
| Open-xchange Ox App Suite | =7.10.6-rev12 | |
| Open-xchange Ox App Suite | =7.10.6-rev13 | |
| Open-xchange Ox App Suite | =7.10.6-rev14 | |
| Open-xchange Ox App Suite | =7.10.6-rev15 | |
| Open-xchange Ox App Suite | =7.10.6-rev16 | |
| Open-xchange Ox App Suite | =7.10.6-rev17 | |
| Open-xchange Ox App Suite | =7.10.6-rev18 | |
| Open-xchange Ox App Suite | =7.10.6-rev19 | |
| Open-xchange Ox App Suite | =7.10.6-rev20 | |
| Open-xchange Ox App Suite | =7.10.6-rev21 | |
| Open-xchange Ox App Suite | =7.10.6-rev22 | |
| Open-xchange Ox App Suite | =7.10.6-rev23 | |
| Open-xchange Ox App Suite | =7.10.6-rev24 | |
| Open-xchange Ox App Suite | =7.10.6-rev25 | |
| Open-xchange Ox App Suite | =7.10.6-rev26 | |
| Open-xchange Ox App Suite | =7.10.6-rev27 | |
| Open-xchange Ox App Suite | =7.10.6-rev28 | |
| Open-xchange Ox App Suite | =7.10.6-rev29 | |
| Open-xchange Ox App Suite | =7.10.6-rev30 | |
| Open-xchange Ox App Suite | <7.10.6 | |
| Open-xchange Ox App Suite | =7.10.6 | |
| Open-xchange Ox App Suite | =7.10.6-rev36 | |
| Open-xchange Ox App Suite | =7.10.6-rev35 | |
| Open-xchange Ox App Suite | =7.10.6-rev34 | |
| Open-xchange Ox App Suite | =7.10.6-rev33 | |
| Open-xchange Ox App Suite | =7.10.6-rev32 | |
| Open-xchange Ox App Suite | =7.10.6-rev31 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-24598?
CVE-2023-24598 is a vulnerability in OX App Suite before backend 7.10.6-rev37 that leads to an information leak in the handling of distribution lists, resulting in partial disclosure of the private contacts of another user.
What is the severity of CVE-2023-24598?
CVE-2023-24598 has a severity level of medium with a CVSS score of 4.0.
How does CVE-2023-24598 affect OX App Suite?
CVE-2023-24598 affects OX App Suite versions before backend 7.10.6-rev37.
What is the fix for CVE-2023-24598?
To fix CVE-2023-24598, update OX App Suite to version 7.10.6-rev37 or later.
Where can I find more information about CVE-2023-24598?
More information about CVE-2023-24598 can be found at https://open-xchange.com and http://seclists.org/fulldisclosure/2023/May/3.
- collector/nvd-latest
- vendor/open-xchange
- vendor/ox app suite
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- canonical/open-xchange ox app suite
- version/open-xchange ox app suite/7.10.6-rev01
- version/open-xchange ox app suite/7.10.6-rev02
- version/open-xchange ox app suite/7.10.6-rev03
- version/open-xchange ox app suite/7.10.6-rev04
- version/open-xchange ox app suite/7.10.6-rev05
- version/open-xchange ox app suite/7.10.6-rev06
- version/open-xchange ox app suite/7.10.6-rev07
- version/open-xchange ox app suite/7.10.6-rev08
- version/open-xchange ox app suite/7.10.6-rev09
- version/open-xchange ox app suite/7.10.6-rev10
- version/open-xchange ox app suite/7.10.6-rev11
- version/open-xchange ox app suite/7.10.6-rev12
- version/open-xchange ox app suite/7.10.6-rev13
- version/open-xchange ox app suite/7.10.6-rev14
- version/open-xchange ox app suite/7.10.6-rev15
- version/open-xchange ox app suite/7.10.6-rev16
- version/open-xchange ox app suite/7.10.6-rev17
- version/open-xchange ox app suite/7.10.6-rev18
- version/open-xchange ox app suite/7.10.6-rev19
- version/open-xchange ox app suite/7.10.6-rev20
- version/open-xchange ox app suite/7.10.6-rev21
- version/open-xchange ox app suite/7.10.6-rev22
- version/open-xchange ox app suite/7.10.6-rev23
- version/open-xchange ox app suite/7.10.6-rev24
- version/open-xchange ox app suite/7.10.6-rev25
- version/open-xchange ox app suite/7.10.6-rev26
- version/open-xchange ox app suite/7.10.6-rev27
- version/open-xchange ox app suite/7.10.6-rev28
- version/open-xchange ox app suite/7.10.6-rev29
- version/open-xchange ox app suite/7.10.6-rev30
- version/open-xchange ox app suite/7.10.6
- version/open-xchange ox app suite/7.10.6-rev36
- version/open-xchange ox app suite/7.10.6-rev35
- version/open-xchange ox app suite/7.10.6-rev34
- version/open-xchange ox app suite/7.10.6-rev33
- version/open-xchange ox app suite/7.10.6-rev32
- version/open-xchange ox app suite/7.10.6-rev31