What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2023-24603.

What is the severity of CVE-2023-24603?

The severity of CVE-2023-24603 is medium, with a severity value of 6.5.

Which software versions are affected by CVE-2023-24603?

OX App Suite versions 7.10.6-rev01 to 7.10.6-rev30 are affected by CVE-2023-24603.

What is the impact of CVE-2023-24603?

CVE-2023-24603 allows a crafted iCal feed to provide an unlimited amount of data, potentially leading to resource exhaustion and denial of service.

Are there any references for CVE-2023-24603?

Yes, you can find more information about CVE-2023-24603 at the following references: [link1](https://open-xchange.com) and [link2](http://seclists.org/fulldisclosure/2023/May/3).

Vulnerability/
CVE-2023-24603

medium

6.5

CWE

29/5/2023

2/8/2024

CVE-2023-24603

First published: Mon May 29 2023(Updated: )

OX App Suite before backend 7.10.6-rev37 does not check size limits when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of data.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Open-xchange Ox App Suite	=7.10.6-rev01
Open-xchange Ox App Suite	=7.10.6-rev02
Open-xchange Ox App Suite	=7.10.6-rev03
Open-xchange Ox App Suite	=7.10.6-rev04
Open-xchange Ox App Suite	=7.10.6-rev05
Open-xchange Ox App Suite	=7.10.6-rev06
Open-xchange Ox App Suite	=7.10.6-rev07
Open-xchange Ox App Suite	=7.10.6-rev08
Open-xchange Ox App Suite	=7.10.6-rev09
Open-xchange Ox App Suite	=7.10.6-rev10
Open-xchange Ox App Suite	=7.10.6-rev11
Open-xchange Ox App Suite	=7.10.6-rev12
Open-xchange Ox App Suite	=7.10.6-rev13
Open-xchange Ox App Suite	=7.10.6-rev14
Open-xchange Ox App Suite	=7.10.6-rev15
Open-xchange Ox App Suite	=7.10.6-rev16
Open-xchange Ox App Suite	=7.10.6-rev17
Open-xchange Ox App Suite	=7.10.6-rev18
Open-xchange Ox App Suite	=7.10.6-rev19
Open-xchange Ox App Suite	=7.10.6-rev20
Open-xchange Ox App Suite	=7.10.6-rev21
Open-xchange Ox App Suite	=7.10.6-rev22
Open-xchange Ox App Suite	=7.10.6-rev23
Open-xchange Ox App Suite	=7.10.6-rev24
Open-xchange Ox App Suite	=7.10.6-rev25
Open-xchange Ox App Suite	=7.10.6-rev26
Open-xchange Ox App Suite	=7.10.6-rev27
Open-xchange Ox App Suite	=7.10.6-rev28
Open-xchange Ox App Suite	=7.10.6-rev29
Open-xchange Ox App Suite	=7.10.6-rev30
Open-xchange Ox App Suite	<7.10.6
Open-xchange Ox App Suite	=7.10.6
Open-xchange Ox App Suite	=7.10.6-rev36
Open-xchange Ox App Suite	=7.10.6-rev35
Open-xchange Ox App Suite	=7.10.6-rev34
Open-xchange Ox App Suite	=7.10.6-rev33
Open-xchange Ox App Suite	=7.10.6-rev32
Open-xchange Ox App Suite	=7.10.6-rev31

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-24603.
What is the severity of CVE-2023-24603?
The severity of CVE-2023-24603 is medium, with a severity value of 6.5.
Which software versions are affected by CVE-2023-24603?
OX App Suite versions 7.10.6-rev01 to 7.10.6-rev30 are affected by CVE-2023-24603.
What is the impact of CVE-2023-24603?
CVE-2023-24603 allows a crafted iCal feed to provide an unlimited amount of data, potentially leading to resource exhaustion and denial of service.
Are there any references for CVE-2023-24603?
Yes, you can find more information about CVE-2023-24603 at the following references: [link1](https://open-xchange.com) and [link2](http://seclists.org/fulldisclosure/2023/May/3).

collector/nvd-latest
vendor/open-xchange
vendor/ox app suite
collector/nvd-index
agent/references
agent/severity
agent/weakness
agent/author
agent/type
agent/description
agent/event
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
canonical/open-xchange ox app suite
version/open-xchange ox app suite/7.10.6-rev01
version/open-xchange ox app suite/7.10.6-rev02
version/open-xchange ox app suite/7.10.6-rev03
version/open-xchange ox app suite/7.10.6-rev04
version/open-xchange ox app suite/7.10.6-rev05
version/open-xchange ox app suite/7.10.6-rev06
version/open-xchange ox app suite/7.10.6-rev07
version/open-xchange ox app suite/7.10.6-rev08
version/open-xchange ox app suite/7.10.6-rev09
version/open-xchange ox app suite/7.10.6-rev10
version/open-xchange ox app suite/7.10.6-rev11
version/open-xchange ox app suite/7.10.6-rev12
version/open-xchange ox app suite/7.10.6-rev13
version/open-xchange ox app suite/7.10.6-rev14
version/open-xchange ox app suite/7.10.6-rev15
version/open-xchange ox app suite/7.10.6-rev16
version/open-xchange ox app suite/7.10.6-rev17
version/open-xchange ox app suite/7.10.6-rev18
version/open-xchange ox app suite/7.10.6-rev19
version/open-xchange ox app suite/7.10.6-rev20
version/open-xchange ox app suite/7.10.6-rev21
version/open-xchange ox app suite/7.10.6-rev22
version/open-xchange ox app suite/7.10.6-rev23
version/open-xchange ox app suite/7.10.6-rev24
version/open-xchange ox app suite/7.10.6-rev25
version/open-xchange ox app suite/7.10.6-rev26
version/open-xchange ox app suite/7.10.6-rev27
version/open-xchange ox app suite/7.10.6-rev28
version/open-xchange ox app suite/7.10.6-rev29
version/open-xchange ox app suite/7.10.6-rev30
version/open-xchange ox app suite/7.10.6
version/open-xchange ox app suite/7.10.6-rev36
version/open-xchange ox app suite/7.10.6-rev35
version/open-xchange ox app suite/7.10.6-rev34
version/open-xchange ox app suite/7.10.6-rev33
version/open-xchange ox app suite/7.10.6-rev32
version/open-xchange ox app suite/7.10.6-rev31