CVE-2020-35452
Description
Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow
Risk Information
Base Score
7.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS Score
Exploitation Probability
10.294
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-13938,CVE-2020-35452,CVE-2021-26690,CVE-2021-26691 are fixed in Apache 2.4.48 | Windows |
| Apache HTTP server (USN-4994-1) apache2_2.4.41-4ubuntu3.3_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.41-4ubuntu3.3_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.46-1ubuntu1.2_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.46-1ubuntu1.2_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.46-4ubuntu1.1_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.46-4ubuntu1.1_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.29-1ubuntu4.16_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2_2.4.29-1ubuntu4.16_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.41-4ubuntu3.3_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.41-4ubuntu3.3_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.46-1ubuntu1.2_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.46-1ubuntu1.2_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.46-4ubuntu1.1_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.46-4ubuntu1.1_amd64.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.29-1ubuntu4.16_i386.deb | Linux |
| Apache HTTP server (USN-4994-1) apache2-bin_2.4.29-1ubuntu4.16_amd64.deb | Linux |
| apache2 security update(DSA-4937-1) apache2_2.4.38-3+deb10u5_i386.deb | Linux |
| apache2 security update(DSA-4937-1) apache2_2.4.38-3+deb10u5_amd64.deb | Linux |
| (RHSA-2022:1915) httpd:2.4 security and bug fix update httpd-debugsource-2.4.37-47.module+el8.6.0+14529+083145da.1.x86_64.rpm | Linux |
| (RHSA-2022:1915) httpd:2.4 security and bug fix update mod_http2-debugsource-1.15.7-5.module+el8.6.0+13996+01710940.x86_64.rpm | Linux |
| (RHSA-2022:1915) httpd:2.4 security and bug fix update mod_ldap-2.4.37-47.module+el8.6.0+14529+083145da.1.x86_64.rpm | Linux |
| (RHSA-2022:1915) httpd:2.4 security and bug fix update mod_proxy_html-2.4.37-47.module+el8.6.0+14529+083145da.1.x86_64.rpm | Linux |
| (RHSA-2022:1915) httpd:2.4 security and bug fix update mod_session-2.4.37-47.module+el8.6.0+14529+083145da.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234