Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2023-29046

Connections to external data sources, like e-mail autoconfiguration, were not terminated in case they hit a timeout, instead those connections were logged. Some connections use user-controlled endpoints, which could be malicious and attempt to keep the connection open for an extended period of time. As a result users were able to trigger large amount of egress network connections, possibly exhausting network pool resources and lock up legitimate requests. A new mechanism has been introduced to cancel external connections that might access user-controlled endpoints. No publicly available exploits are known.

  • Published: Nov 2, 2023
  • Updated: Nov 10, 2023
  • CVE: CVE-2023-29046
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CWEs:

Software From Fixed in
open-xchange / open-xchange_appsuite 7.10.6 7.10.6.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6069 7.10.6-patch_release_6069.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6073 7.10.6-patch_release_6073.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6080 7.10.6-patch_release_6080.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6085 7.10.6-patch_release_6085.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6093 7.10.6-patch_release_6093.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6102 7.10.6-patch_release_6102.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6112 7.10.6-patch_release_6112.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6121 7.10.6-patch_release_6121.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6133 7.10.6-patch_release_6133.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6138 7.10.6-patch_release_6138.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6141 7.10.6-patch_release_6141.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6146 7.10.6-patch_release_6146.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6147 7.10.6-patch_release_6147.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6148 7.10.6-patch_release_6148.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6150 7.10.6-patch_release_6150.x
open-xchange / open-xchange_appsuite - 7.10.6
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6241 7.10.6-patch_release_6241.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6239 7.10.6-patch_release_6239.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6236 7.10.6-patch_release_6236.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6235 7.10.6-patch_release_6235.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6233 7.10.6-patch_release_6233.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6230 7.10.6-patch_release_6230.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6227 7.10.6-patch_release_6227.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6220 7.10.6-patch_release_6220.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6219 7.10.6-patch_release_6219.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6218 7.10.6-patch_release_6218.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6216 7.10.6-patch_release_6216.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6215 7.10.6-patch_release_6215.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6214 7.10.6-patch_release_6214.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6210 7.10.6-patch_release_6210.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6209 7.10.6-patch_release_6209.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6205 7.10.6-patch_release_6205.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6204 7.10.6-patch_release_6204.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6199 7.10.6-patch_release_6199.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6194 7.10.6-patch_release_6194.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6189 7.10.6-patch_release_6189.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6178 7.10.6-patch_release_6178.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6176 7.10.6-patch_release_6176.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6173 7.10.6-patch_release_6173.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6166 7.10.6-patch_release_6166.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6161 7.10.6-patch_release_6161.x
open-xchange / open-xchange_appsuite 7.10.6-patch_release_6156 7.10.6-patch_release_6156.x