exploitDog

GHSA-x7c9-rh33-jx9h

Опубликовано: 29 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data.

OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data.

Ссылки

EPSS

Процентиль: 15%

0.00047

Низкий

4.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2023-24604

CVSS3: 4.3

nvd

больше 2 лет назад

OX App Suite before backend 7.10.6-rev37 does not check HTTP header lengths when downloading, e.g., potentially allowing a crafted iCal feed to provide an unlimited amount of header data.

EPSS

Процентиль: 15%

0.00047

Низкий

4.3 Medium

CVSS3

CVE ID