CVE-2022-37312
CVE-2022-37312
In short
OX App Suite up to version 7.10.6 is vulnerable to excessive resource consumption when processing unusually large request bodies that include redirect URLs. An attacker can exploit this to overload the server, causing performance degradation or service disruption.
Technical detail
The deferrer servlet in OX App Suite 7.10.6 and earlier lacks proper input validation on request body size, allowing unauthenticated or authenticated attackers to submit large payloads with redirect URLs that consume excessive server resources. This can lead to denial of service through CPU or memory exhaustion without requiring privilege escalation.
Summary generated and translated by AI from the official description.
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large request body containing a redirect URL to the deferrer servlet.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →