Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-35452

Опубликовано: 10 июн. 2021
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.3

Описание

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

РелизСтатусПримечание
bionic

released

2.4.29-1ubuntu4.16
devel

released

2.4.46-4ubuntu2
esm-infra-legacy/trusty

not-affected

2.4.7-1ubuntu4.22+esm1
esm-infra/bionic

not-affected

2.4.29-1ubuntu4.16
esm-infra/focal

not-affected

2.4.41-4ubuntu3.3
esm-infra/xenial

released

2.4.18-2ubuntu3.17+esm1
focal

released

2.4.41-4ubuntu3.3
groovy

released

2.4.46-1ubuntu1.2
hirsute

released

2.4.46-4ubuntu1.1
impish

released

2.4.46-4ubuntu2

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.0656
Низкий

6.8 Medium

CVSS2

7.3 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-35452

CVSS3: 7.3
redhat
около 4 лет назад

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

nvd логотип

CVE-2020-35452

CVSS3: 7.3
nvd
около 4 лет назад

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

msrc логотип

CVE-2020-35452

CVSS3: 7.3
msrc
около 4 лет назад

Описание отсутствует

debian логотип

CVE-2020-35452

CVSS3: 7.3
debian
около 4 лет назад

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest ...

github логотип

GHSA-77mj-xh9q-fm9j

github
около 3 лет назад

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

EPSS

Процентиль: 91%
0.0656
Низкий

6.8 Medium

CVSS2

7.3 High

CVSS3