CVE-2020-35452

Advisory lineage Upstream: 0 Downstream: 16

Downstream

ALPINE-CVE-2020-35452 DEBIAN-CVE-2020-35452 DLA-2706-1 DSA-4937-1 MGASA-2021-0265 OPENSUSE-SU-2021:0908-1

Modified

Published: 10 Jun 2021, 07:10

Last modified:04 Aug 2024, 17:02

Vulnerability Summary

Overall Risk (default)

medium

31/100

CVSS Score

7.3 HIGH

v3.1 (nvd)

EPSS Score

10.7% MEDIUM

11% probability -2.70%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

10 Jun 2021, 07:10

Published

Vulnerability first disclosed

04 Aug 2024, 17:02

Last Modified

Vulnerability information updated

Description

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

CVSS Metrics

v3.1•HIGH•Score: 7.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 10.70%• Percentile: 93%

Techniques & Countermeasures

CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

Affected Systems

apache software foundation•apache http server
2.4.46 | 2.4.43 | 2.4.41 | 2.4.39 | 2.4.38 | 2.4.37 | 2.4.35 | 2.4.34 | 2.4.33 | 2.4.29 | 2.4.28 | 2.4.27 | 2.4.26 | 2.4.25 | 2.4.23 | 2.4.20 | 2.4.18 | 2.4.17 | 2.4.16 | 2.4.12 | 2.4.10 | 2.4.9 | 2.4.7 | 2.4.6 | 2.4.4 | 2.4.3 | 2.4.2 | 2.4.1 | 2.4.0
Unknown•HTTP Server
≥ 2.4.0, ≤ 2.4.46
debian•debian_linux
9.0 | 10.0
fedoraproject•fedora
34 | 35
oracle•enterprise_manager_ops_center
12.4.0.0
oracle•instantis_enterprisetrack
17.1 | 17.2 | 17.3
oracle•zfs_storage_appliance_kit
8.8