Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-p5j8-2qpf-wxr5

Опубликовано: 17 янв. 2023
Источник: github
Github: Не прошло ревью
CVSS3: 7.5

Описание

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

EPSS

Процентиль: 72%
0.00724
Низкий

7.5 High

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVSS3: 7.5
ubuntu
больше 2 лет назад

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

CVSS3: 7.5
redhat
больше 2 лет назад

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

CVSS3: 7.5
nvd
больше 2 лет назад

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

CVSS3: 7.5
debian
больше 2 лет назад

A carefully crafted If: request header can cause a memory read, or wri ...

CVSS3: 7.5
fstec
почти 19 лет назад

Уязвимость модуля mod_dav веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 72%
0.00724
Низкий

7.5 High

CVSS3

Дефекты

CWE-787