CVE-2023-41705

Name of the Vulnerable Software and Affected Versions OX App Suite (affected versions not specified)

Description The issue arises from the processing of user-defined DAV user-agent strings not being limited, which could lead to a high processing load and reduce the availability of OX App Suite. To address this, updates and patch releases have been provided. With these updates, the processing time of DAV user-agents is now monitored, and any related request is terminated if a resource threshold is reached. There are no known publicly available exploits for this issue.

Recommendations Please deploy the provided updates and patch releases to resolve the issue. As a temporary workaround, consider monitoring the processing time of DAV user-agents and terminating requests that exceed resource thresholds until a patch is fully applied.