Vulnerability-Lookup

WID-SEC-W-2022-0192

Vulnerability from csaf_certbund - Published: 2022-06-07 22:00 - Updated: 2024-03-26 23:00

Summary

Apache HTTP Server: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Apache ist ein Webserver für verschiedene Plattformen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apache HTTP Server ausnutzen, um falsche Informationen darzustellen, vertrauliche Informationen offenzulegen, einen Denial of Service Zustand herzustellen und Sicherheitsmaßnahmen zu umgehen.

Betroffene Betriebssysteme: - F5 Networks - Hardware Appliance - Linux - NetApp Appliance - Sonstiges - UNIX - Windows

CVE-2022-26377

Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund einer unsachgemäßen Validierung von HTTP-Anfragen in mod_proxy_ajp. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um HTTP-Request-Schmuggel-Angriffe durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-28330

In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer Out-of-Bounds-Reads. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen.

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-28614

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-28615

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-30556

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-29404

In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund eines Eingabevalidierungsfehlers und einer Ressourcenerschöpfung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-30522

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

CVE-2022-31813

Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund eines Fehlers in der mod_proxy-Implementierung, bei dem der Webserver möglicherweise die X-Forwarded-*-Header nicht an den Ursprungsserver sendet, basierend auf dem clientseitigen Connection-Header-Hop-by-Hop-Mechanismus. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen.

Affected products

Known affected 21 products

Product	Identifier	Version
IBM WebSphere Application Server IBM	`cpe:/a:ibm:websphere_application_server:-`	—
IBM HTTP Server 7.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:7.0`	7
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM HTTP Server 8.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.0`	8
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
IBM Rational Build Forge < 8.0.0.24 IBM / Rational Build Forge		< 8.0.0.24
IBM HTTP Server IBM / HTTP Server	`cpe:/a:ibm:http_server:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM QRadar SIEM < 7.5.0 UP8 IBM / QRadar SIEM		< 7.5.0 UP8
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
QNAP NAS QNAP	`cpe:/h:qnap:nas:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Baramundi Management Suite Baramundi	`cpe:/a:baramundi:management_suite:-`	—
IBM HTTP Server 8.5 IBM / HTTP Server	`cpe:/a:ibm:http_server:8.5`	8.5
IBM HTTP Server 9.0 IBM / HTTP Server	`cpe:/a:ibm:http_server:9.0`	9

References

42 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://ubuntu.com/security/notices/USN-5487-1	external
https://httpd.apache.org/security/vulnerabilities…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.ibm.com/blogs/psirt/security-bulletin…	external
https://ubuntu.com/security/notices/USN-5487-2	external
https://ubuntu.com/security/notices/USN-5487-3	external
https://support.f5.com/csp/article/K58003591	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/ALAS-2022-1607.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://support.f5.com/csp/article/K40582331	external
https://alas.aws.amazon.com/AL2/ALAS-2022-1812.html	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-110.html	external
https://security.netapp.com/advisory/ntap-2022062…	external
http://linux.oracle.com/errata/ELSA-2022-9675.html	external
http://linux.oracle.com/errata/ELSA-2022-9676.html	external
http://linux.oracle.com/errata/ELSA-2022-9680.html	external
https://linux.oracle.com/errata/ELSA-2022-9682.html	external
https://security.gentoo.org/glsa/202208-20	external
https://www.qnap.com/de-de/security-advisory/QSA-22-23	external
http://linux.oracle.com/errata/ELSA-2022-9714.html	external
https://support.hcltechsw.com/csm?id=kb_article&s…	external
https://www.baramundi.com/de-de/security-info/s-2…	external
https://access.redhat.com/errata/RHSA-2022:6753	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-202.html	external
https://access.redhat.com/errata/RHSA-2022:7647	external
https://access.redhat.com/errata/RHSA-2022:8067	external
https://linux.oracle.com/errata/ELSA-2022-7647.html	external
https://linux.oracle.com/errata/ELSA-2022-8067.html	external
https://access.redhat.com/errata/RHSA-2022:8840	external
https://access.redhat.com/errata/RHSA-2022:8841	external
https://www.ibm.com/support/pages/node/6595149	external
https://linux.oracle.com/errata/ELSA-2023-1593.html	external
https://my.f5.com/manage/s/article/K26314875	external
https://my.f5.com/manage/s/article/K40582331	external
https://support.hpe.com/hpesc/public/docDisplay?d…	external
https://www.ibm.com/support/pages/node/7063718	external
https://www.ibm.com/support/pages/node/7145265	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Apache ist ein Webserver f\u00fcr verschiedene Plattformen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apache HTTP Server ausnutzen, um falsche Informationen darzustellen, vertrauliche Informationen offenzulegen, einen Denial of Service Zustand herzustellen und Sicherheitsma\u00dfnahmen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- F5 Networks\n- Hardware Appliance\n- Linux\n- NetApp Appliance\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0192 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0192.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0192 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0192"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5487-1 vom 2022-06-21",
        "url": "https://ubuntu.com/security/notices/USN-5487-1"
      },
      {
        "category": "external",
        "summary": "Apache Security Advisory vom 2022-06-07",
        "url": "https://httpd.apache.org/security/vulnerabilities_24.html#2.4.54"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2099-1 vom 2022-06-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011297.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2101-1 vom 2022-06-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011298.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6595149 vom 2022-06-16",
        "url": "https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-http-server-used-by-ibm-websphere-application-server-2/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5487-2 vom 2022-06-23",
        "url": "https://ubuntu.com/security/notices/USN-5487-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5487-3 vom 2022-06-24",
        "url": "https://ubuntu.com/security/notices/USN-5487-3"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K58003591 vom 2022-07-05",
        "url": "https://support.f5.com/csp/article/K58003591"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2302-1 vom 2022-07-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011423.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1607 vom 2022-07-07",
        "url": "https://alas.aws.amazon.com/ALAS-2022-1607.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2342-1 vom 2022-07-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011488.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:2338-1 vom 2022-07-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011487.html"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K40582331 vom 2022-07-08",
        "url": "https://support.f5.com/csp/article/K40582331"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1812 vom 2022-07-15",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1812.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-110 vom 2022-07-21",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-110.html"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20220624-0005 vom 2022-07-27",
        "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9675 vom 2022-08-04",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9675.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9676 vom 2022-08-04",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9676.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9680 vom 2022-08-05",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9680.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9682 vom 2022-08-11",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9682.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202208-20 vom 2022-08-14",
        "url": "https://security.gentoo.org/glsa/202208-20"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory QSA-22-23 vom 2022-08-15",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-22-23"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9714 vom 2022-08-17",
        "url": "http://linux.oracle.com/errata/ELSA-2022-9714.html"
      },
      {
        "category": "external",
        "summary": "HCL Article KB0100505 vom 2022-09-21",
        "url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0100505"
      },
      {
        "category": "external",
        "summary": "baramundi Sicherheitsupdate S-2022-01 vom 2022-09-27",
        "url": "https://www.baramundi.com/de-de/security-info/s-2022-01/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6753 vom 2022-09-29",
        "url": "https://access.redhat.com/errata/RHSA-2022:6753"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-202 vom 2022-11-04",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-202.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7647 vom 2022-11-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:7647"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8067 vom 2022-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:8067"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-7647 vom 2022-11-15",
        "url": "https://linux.oracle.com/errata/ELSA-2022-7647.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-8067 vom 2022-11-22",
        "url": "https://linux.oracle.com/errata/ELSA-2022-8067.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8840 vom 2022-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:8840"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:8841 vom 2022-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2022:8841"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6595149 abgerufen am 2023-02-17",
        "url": "https://www.ibm.com/support/pages/node/6595149"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-1593 vom 2023-04-05",
        "url": "https://linux.oracle.com/errata/ELSA-2023-1593.html"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K26314875 vom 2023-04-06",
        "url": "https://my.f5.com/manage/s/article/K26314875"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K40582331 vom 2023-06-22",
        "url": "https://my.f5.com/manage/s/article/K40582331"
      },
      {
        "category": "external",
        "summary": "HPE Securi+y Bulletin",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04494en_us"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7063718 vom 2023-10-31",
        "url": "https://www.ibm.com/support/pages/node/7063718"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7145265 vom 2024-03-26",
        "url": "https://www.ibm.com/support/pages/node/7145265"
      }
    ],
    "source_lang": "en-US",
    "title": "Apache HTTP Server: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-03-26T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:27:11.815+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2022-0192",
      "initial_release_date": "2022-06-07T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-06-07T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-06-16T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE und IBM aufgenommen"
        },
        {
          "date": "2022-06-21T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-06-22T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-06-23T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-07-05T22:00:00.000+00:00",
          "number": "6",
          "summary": "F5 stellt neue Informationen bereit"
        },
        {
          "date": "2022-07-06T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-07-07T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-07-10T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE und Informationen von F5 aufgenommen"
        },
        {
          "date": "2022-07-14T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-07-21T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-07-27T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2022-08-04T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-08-07T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-08-10T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-08-14T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2022-08-15T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von QNAP aufgenommen"
        },
        {
          "date": "2022-08-17T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-09-20T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2022-09-27T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Baramundi aufgenommen"
        },
        {
          "date": "2022-09-29T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-06T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-11-15T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2022-11-21T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-12-08T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-16T23:00:00.000+00:00",
          "number": "27",
          "summary": "Aktualisierung IBM Link wg. nicht mehr erreichbarer URL, Erg\u00e4nzung Produktliste dazu"
        },
        {
          "date": "2023-04-04T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-04-10T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von F5 aufgenommen"
        },
        {
          "date": "2023-06-22T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von F5 aufgenommen"
        },
        {
          "date": "2023-08-13T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2023-10-31T23:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-03-26T23:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "33"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 2.4.54",
                "product": {
                  "name": "Apache HTTP Server \u003c 2.4.54",
                  "product_id": "T023434"
                }
              }
            ],
            "category": "product_name",
            "name": "HTTP Server"
          }
        ],
        "category": "vendor",
        "name": "Apache"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Baramundi Management Suite",
            "product": {
              "name": "Baramundi Management Suite",
              "product_id": "T024720",
              "product_identification_helper": {
                "cpe": "cpe:/a:baramundi:management_suite:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Baramundi"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Broadcom Brocade Switch",
            "product": {
              "name": "Broadcom Brocade Switch",
              "product_id": "T015844",
              "product_identification_helper": {
                "cpe": "cpe:/h:brocade:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Broadcom"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "F5 BIG-IP",
                "product": {
                  "name": "F5 BIG-IP",
                  "product_id": "T001663",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c 15.1.9",
                "product": {
                  "name": "F5 BIG-IP \u003c 15.1.9",
                  "product_id": "T028287"
                }
              }
            ],
            "category": "product_name",
            "name": "BIG-IP"
          }
        ],
        "category": "vendor",
        "name": "F5"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HCL Commerce",
            "product": {
              "name": "HCL Commerce",
              "product_id": "T019293",
              "product_identification_helper": {
                "cpe": "cpe:/a:hcltechsw:commerce:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HPE Switch",
            "product": {
              "name": "HPE Switch",
              "product_id": "T005119",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HPE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "8.5",
                "product": {
                  "name": "IBM HTTP Server 8.5",
                  "product_id": "T001650",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:http_server:8.5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7",
                "product": {
                  "name": "IBM HTTP Server 7.0",
                  "product_id": "T003674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:http_server:7.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8",
                "product": {
                  "name": "IBM HTTP Server 8.0",
                  "product_id": "T003675",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:http_server:8.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM HTTP Server",
                "product": {
                  "name": "IBM HTTP Server",
                  "product_id": "T004019",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:http_server:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "IBM HTTP Server 9.0",
                  "product_id": "T008162",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:http_server:9.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "HTTP Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 7.5.0 UP8",
                "product": {
                  "name": "IBM QRadar SIEM \u003c 7.5.0 UP8",
                  "product_id": "T033681"
                }
              }
            ],
            "category": "product_name",
            "name": "QRadar SIEM"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 8.0.0.24",
                "product": {
                  "name": "IBM Rational Build Forge \u003c 8.0.0.24",
                  "product_id": "T030689"
                }
              }
            ],
            "category": "product_name",
            "name": "Rational Build Forge"
          },
          {
            "category": "product_name",
            "name": "IBM WebSphere Application Server",
            "product": {
              "name": "IBM WebSphere Application Server",
              "product_id": "5198",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:websphere_application_server:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp Data ONTAP",
            "product": {
              "name": "NetApp Data ONTAP",
              "product_id": "7654",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:data_ontap:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "QNAP NAS",
            "product": {
              "name": "QNAP NAS",
              "product_id": "T017100",
              "product_identification_helper": {
                "cpe": "cpe:/h:qnap:nas:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "QNAP"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-26377",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund einer unsachgem\u00e4\u00dfen Validierung von HTTP-Anfragen in mod_proxy_ajp. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um HTTP-Request-Schmuggel-Angriffe durchzuf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-26377"
    },
    {
      "cve": "CVE-2022-28330",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer Out-of-Bounds-Reads. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-28330"
    },
    {
      "cve": "CVE-2022-28614",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer Out-of-Bounds-Reads. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-28614"
    },
    {
      "cve": "CVE-2022-28615",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer Out-of-Bounds-Reads. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-28615"
    },
    {
      "cve": "CVE-2022-30556",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer Out-of-Bounds-Reads. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-30556"
    },
    {
      "cve": "CVE-2022-29404",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund eines Eingabevalidierungsfehlers und einer Ressourcenersch\u00f6pfung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-29404"
    },
    {
      "cve": "CVE-2022-30522",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund eines Eingabevalidierungsfehlers und einer Ressourcenersch\u00f6pfung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-30522"
    },
    {
      "cve": "CVE-2022-31813",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund eines Fehlers in der mod_proxy-Implementierung, bei dem der Webserver m\u00f6glicherweise die X-Forwarded-*-Header nicht an den Ursprungsserver sendet, basierend auf dem clientseitigen Connection-Header-Hop-by-Hop-Mechanismus. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "5198",
          "T003674",
          "67646",
          "T003675",
          "7654",
          "T015844",
          "T030689",
          "T004019",
          "T005119",
          "T019293",
          "T033681",
          "T012167",
          "T004914",
          "T017100",
          "T002207",
          "T000126",
          "T001663",
          "398363",
          "T024720",
          "T001650",
          "T008162"
        ]
      },
      "release_date": "2022-06-07T22:00:00.000+00:00",
      "title": "CVE-2022-31813"
    }
  ]
}

CVE-2022-26377 (GCVE-0-2022-26377)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 05:03

Title

mod_proxy_ajp: Possible request smuggling

Summary

Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.

Severity

No CVSS data available.

CWE

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/2	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: Apache HTTP Server 2.4 , ≤ 2.4.53 (custom)

Credits

Ricter Z @ 360 Noah Lab

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T05:03:32.881Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-26377: Apache HTTP Server: mod_proxy_ajp: Possible request smuggling",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "Apache HTTP Server 2.4",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Ricter Z @ 360 Noah Lab"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027) vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "moderate"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-444",
              "description": "CWE-444 Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:08:03.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-26377: Apache HTTP Server: mod_proxy_ajp: Possible request smuggling",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-03-02T00:00:00.000Z",
          "value": "Reported to security team"
        },
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "mod_proxy_ajp: Possible request smuggling",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-26377",
          "STATE": "PUBLIC",
          "TITLE": "mod_proxy_ajp: Possible request smuggling"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache HTTP Server 2.4",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Ricter Z @ 360 Noah Lab"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027) vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "moderate"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-444 Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-26377: Apache HTTP Server: mod_proxy_ajp: Possible request smuggling",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/2"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-03-02T00:00:00.000Z",
            "value": "Reported to security team"
          },
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-26377",
    "datePublished": "2022-06-08T10:00:20.000Z",
    "dateReserved": "2022-03-03T00:00:00.000Z",
    "dateUpdated": "2024-08-03T05:03:32.881Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-28330 (GCVE-0-2022-28330)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 05:48

Title

read beyond bounds in mod_isapi

Summary

Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to process requests with the mod_isapi module.

Severity

No CVSS data available.

CWE

CWE-125 - Out-of-bounds Read

Assigner

apache

References

3 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/3	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: Apache HTTP Server , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T05:48:37.891Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-28330: Apache HTTP Server: read beyond bounds in mod_isapi",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/3"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Windows"
          ],
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "Apache HTTP Server",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to process requests with the mod_isapi module."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "CWE-125 Out-of-bounds Read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-06-24T15:06:22.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-28330: Apache HTTP Server: read beyond bounds in mod_isapi",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/3"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "read beyond bounds in mod_isapi",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-28330",
          "STATE": "PUBLIC",
          "TITLE": "read beyond bounds in mod_isapi"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "platform": "Windows",
                            "version_affected": "\u003c=",
                            "version_name": "Apache HTTP Server",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to process requests with the mod_isapi module."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-125 Out-of-bounds Read"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-28330: Apache HTTP Server: read beyond bounds in mod_isapi",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/3"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-28330",
    "datePublished": "2022-06-08T10:00:34.000Z",
    "dateReserved": "2022-04-01T00:00:00.000Z",
    "dateUpdated": "2024-08-03T05:48:37.891Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-28614 (GCVE-0-2022-28614)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 05:56

Title

read beyond bounds via ap_rwrite()

Summary

The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the 'ap_rputs' function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue.

Severity

No CVSS data available.

CWE

CWE-190 - Integer Overflow or Wraparound
CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/4	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: unspecified , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T05:56:16.107Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-28614: Apache HTTP Server: read beyond bounds via ap_rwrite()",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/4"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the \u0027ap_rputs\u0027 function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-190",
              "description": "CWE-190 Integer Overflow or Wraparound",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:06:39.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-28614: Apache HTTP Server: read beyond bounds via ap_rwrite()",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/4"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "read beyond bounds via ap_rwrite()",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-28614",
          "STATE": "PUBLIC",
          "TITLE": "read beyond bounds via ap_rwrite()"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the \u0027ap_rputs\u0027 function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-190 Integer Overflow or Wraparound"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-28614: Apache HTTP Server: read beyond bounds via ap_rwrite()",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/4"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-28614",
    "datePublished": "2022-06-08T10:00:48.000Z",
    "dateReserved": "2022-04-04T00:00:00.000Z",
    "dateUpdated": "2024-08-03T05:56:16.107Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-28615 (GCVE-0-2022-28615)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2025-12-18 15:26

Title

Read beyond bounds in ap_strcmp_match()

Summary

Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected.

Severity

No CVSS data available.

CWE

CWE-190 - Integer Overflow or Wraparound

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/9	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: Apache HTTP Server , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T05:56:16.195Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-28615: Apache HTTP Server: Read beyond bounds in ap_strcmp_match()",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/9"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.1,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-28615",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-12-18T15:26:06.866089Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-12-18T15:26:47.398Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "Apache HTTP Server",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-190",
              "description": "CWE-190 Integer Overflow or Wraparound",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:07:39.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-28615: Apache HTTP Server: Read beyond bounds in ap_strcmp_match()",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/9"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "Read beyond bounds in ap_strcmp_match()",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-28615",
          "STATE": "PUBLIC",
          "TITLE": "Read beyond bounds in ap_strcmp_match()"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache HTTP Server",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-190 Integer Overflow or Wraparound"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-28615: Apache HTTP Server: Read beyond bounds in ap_strcmp_match()",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/9"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-28615",
    "datePublished": "2022-06-08T10:00:51.000Z",
    "dateReserved": "2022-04-04T00:00:00.000Z",
    "dateUpdated": "2025-12-18T15:26:47.398Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2022-29404 (GCVE-0-2022-29404)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 06:17

Title

Denial of service in mod_lua r:parsebody

Summary

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.

Severity

No CVSS data available.

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/5	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: unspecified , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T06:17:55.325Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-29404: Apache HTTP Server: Denial of service in mod_lua r:parsebody",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/5"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770: Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:06:33.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-29404: Apache HTTP Server: Denial of service in mod_lua r:parsebody",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/5"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "Denial of service in mod_lua r:parsebody",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-29404",
          "STATE": "PUBLIC",
          "TITLE": "Denial of service in mod_lua r:parsebody"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-770: Allocation of Resources Without Limits or Throttling"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-29404: Apache HTTP Server: Denial of service in mod_lua r:parsebody",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/5"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-29404",
    "datePublished": "2022-06-08T10:00:52.000Z",
    "dateReserved": "2022-04-16T00:00:00.000Z",
    "dateUpdated": "2024-08-03T06:17:55.325Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-30522 (GCVE-0-2022-30522)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 06:48

Title

mod_sed denial of service

Summary

If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort.

Severity

No CVSS data available.

CWE

CWE-789 - Memory Allocation with Excessive Size Value

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/6	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: 2.4.53

Credits

This issue was found by Brian Moussalli from the JFrog Security Research team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T06:48:36.355Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-30522: Apache HTTP Server: mod_sed denial of service",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/6"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "2.4.53"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was found by Brian Moussalli from the JFrog Security Research team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-789",
              "description": "CWE-789: Memory Allocation with Excessive Size Value",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:07:06.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-30522: Apache HTTP Server: mod_sed denial of service",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/6"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "mod_sed denial of service",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-30522",
          "STATE": "PUBLIC",
          "TITLE": "mod_sed denial of service"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "This issue was found by Brian Moussalli from the JFrog Security Research team"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-789: Memory Allocation with Excessive Size Value"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-30522: Apache HTTP Server: mod_sed denial of service",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/6"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-30522",
    "datePublished": "2022-06-08T10:00:54.000Z",
    "dateReserved": "2022-05-09T00:00:00.000Z",
    "dateUpdated": "2024-08-03T06:48:36.355Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-30556 (GCVE-0-2022-30556)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 06:48

Title

Information Disclosure in mod_lua with websockets

Summary

Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.

Severity

No CVSS data available.

CWE

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/7	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: unspecified , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T06:48:36.447Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-30556: Apache HTTP Server: Information Disclosure in mod_lua with websockets",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/7"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:08:17.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-30556: Apache HTTP Server: Information Disclosure in mod_lua with websockets",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/7"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "Information Disclosure in mod_lua with websockets",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-30556",
          "STATE": "PUBLIC",
          "TITLE": "Information Disclosure in mod_lua with websockets"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-30556: Apache HTTP Server: Information Disclosure in mod_lua with websockets",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/7"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-30556",
    "datePublished": "2022-06-08T10:00:55.000Z",
    "dateReserved": "2022-05-11T00:00:00.000Z",
    "dateUpdated": "2024-08-03T06:48:36.447Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-31813 (GCVE-0-2022-31813)

Vulnerability from cvelistv5 – Published: 2022-06-08 10:00 – Updated: 2024-08-03 07:26

Title

mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism

Summary

Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.

Severity

No CVSS data available.

CWE

CWE-348 - Use of Less Trusted Source

Assigner

apache

References

6 references

URL	Tags
https://httpd.apache.org/security/vulnerabilities…	x_refsource_MISC
http://www.openwall.com/lists/oss-security/2022/06/08/8	mailing-listx_refsource_MLIST
https://security.netapp.com/advisory/ntap-2022062…	x_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: Apache HTTP Server 2.4 , ≤ 2.4.53 (custom)

Credits

The Apache HTTP Server project would like to thank Gaetan Ferry (Synacktiv) for reporting this issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T07:26:01.124Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "[oss-security] 20220608 CVE-2022-31813: Apache HTTP Server: mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/08/8"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
          },
          {
            "name": "FEDORA-2022-e620fb15d5",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
          },
          {
            "name": "FEDORA-2022-b54a8dee29",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.53",
              "status": "affected",
              "version": "Apache HTTP Server 2.4",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The Apache HTTP Server project would like to thank Gaetan Ferry (Synacktiv) for reporting this issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-348",
              "description": "CWE-348 Use of Less Trusted Source",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:06:59.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "[oss-security] 20220608 CVE-2022-31813: Apache HTTP Server: mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/08/8"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
        },
        {
          "name": "FEDORA-2022-e620fb15d5",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
        },
        {
          "name": "FEDORA-2022-b54a8dee29",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2022-06-08T00:00:00.000Z",
          "value": "released in 2.4.54"
        }
      ],
      "title": "mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-31813",
          "STATE": "PUBLIC",
          "TITLE": "mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache HTTP Server 2.4",
                            "version_value": "2.4.53"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The Apache HTTP Server project would like to thank Gaetan Ferry (Synacktiv) for reporting this issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-348 Use of Less Trusted Source"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "[oss-security] 20220608 CVE-2022-31813: Apache HTTP Server: mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/08/8"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220624-0005/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220624-0005/"
            },
            {
              "name": "FEDORA-2022-e620fb15d5",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/"
            },
            {
              "name": "FEDORA-2022-b54a8dee29",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2022-06-08T00:00:00.000Z",
            "value": "released in 2.4.54"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-31813",
    "datePublished": "2022-06-08T10:00:57.000Z",
    "dateReserved": "2022-05-30T00:00:00.000Z",
    "dateUpdated": "2024-08-03T07:26:01.124Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2022-0192

CVE-2022-26377 (GCVE-0-2022-26377)

CVE-2022-28330 (GCVE-0-2022-28330)

CVE-2022-28614 (GCVE-0-2022-28614)

CVE-2022-28615 (GCVE-0-2022-28615)

CVE-2022-29404 (GCVE-0-2022-29404)

CVE-2022-30522 (GCVE-0-2022-30522)

CVE-2022-30556 (GCVE-0-2022-30556)

CVE-2022-31813 (GCVE-0-2022-31813)

Tags

Sightings

Nomenclature