7.8

CVE-2019-0211

Warnung
Exploit
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApacheHTTP Server Version >= 2.4.17 <= 2.4.38
FedoraprojectFedora Version28
FedoraprojectFedora Version29
FedoraprojectFedora Version30
CanonicalUbuntu Linux Version14.04 SwEditionesm
CanonicalUbuntu Linux Version16.04 SwEditionesm
CanonicalUbuntu Linux Version18.04 SwEditionesm
CanonicalUbuntu Linux Version18.10
DebianDebian Linux Version9.0
OpensuseLeap Version15.0
OpensuseLeap Version42.3
NetappOncommand Unified Manager Version- SwPlatform7-mode
RedhatJboss Core Services Version1.0
RedhatSoftware Collections Version1.0
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Eus Version8.1
RedhatEnterprise Linux Eus Version8.2
RedhatEnterprise Linux Eus Version8.4
RedhatEnterprise Linux Eus Version8.6
RedhatEnterprise Linux Eus Version8.8
RedhatEnterprise Linux For Arm 64 Version8.0_aarch64
RedhatEnterprise Linux For Arm 64 Eus Version8.1_aarch64
RedhatEnterprise Linux For Arm 64 Eus Version8.2_aarch64
RedhatEnterprise Linux For Arm 64 Eus Version8.4_aarch64
RedhatEnterprise Linux For Arm 64 Eus Version8.6_aarch64
RedhatEnterprise Linux For Arm 64 Eus Version8.8_aarch64
OracleHTTP Server Version12.2.1.3.0

03.11.2021: CISA Known Exploited Vulnerabilities (KEV) Catalog

Apache HTTP Server Privilege Escalation Vulnerability

Schwachstelle

Apache HTTP Server, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute code with the privileges of the parent process (usually root) by manipulating the scoreboard.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 65.01% 0.991
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
Patch
Mailing List
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://httpd.apache.org/security/vulnerabilities_24.html
Vendor Advisory
https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
Patch
Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2020.html
Patch
Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
Patch
Third Party Advisory
https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E
Mailing List
https://access.redhat.com/errata/RHSA-2019:1543
Third Party Advisory
https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://access.redhat.com/errata/RHSA-2019:1296
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1297
Third Party Advisory
https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://access.redhat.com/errata/RHBA-2019:0959
Third Party Advisory
https://seclists.org/bugtraq/2019/Apr/5
Third Party Advisory
Mailing List
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us
Third Party Advisory
https://usn.ubuntu.com/3937-1/
Third Party Advisory
https://www.debian.org/security/2019/dsa-4422
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2019:0746
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0980
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/
Release Notes
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZRMTEIGZKYFNGIDOTXN3GNEJTLVCYU7/
Release Notes
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/
Release Notes
https://security.netapp.com/advisory/ntap-20190423-0001/
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html
Third Party Advisory
Broken Link
Mailing List
Release Notes
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html
Third Party Advisory
Broken Link
Mailing List
Release Notes
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html
Third Party Advisory
Broken Link
http://packetstormsecurity.com/files/152386/Apache-2.4.38-Root-Privilege-Escalation.html
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152415/Slackware-Security-Advisory-httpd-Updates.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/152441/CARPE-DIEM-Apache-2.4.x-Local-Privilege-Escalation.html
Third Party Advisory
Exploit
VDB Entry
http://www.apache.org/dist/httpd/CHANGES_2.4.39
Vendor Advisory
Broken Link
http://www.openwall.com/lists/oss-security/2019/04/02/3
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2019/07/26/7
Mailing List
http://www.securityfocus.com/bid/107666
Third Party Advisory
Broken Link
VDB Entry
https://lists.apache.org/thread.html/890507b85c30adf133216b299cc35cd8cd0346a885acfc671c04694e%40%3Cdev.community.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/b1613d44ec364c87bb7ee8c5939949f9b061c05c06e0e90098ebf7aa%40%3Cusers.httpd.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/b2bdb308dc015e771ba79c0586b2de6fb50caa98b109833f5d4daf28%40%3Cdev.community.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/de881a130bc9cb2f3a9ff220784520556884fb8ea80e69400a45509e%40%3Cdev.community.apache.org%3E
Mailing List
https://lists.apache.org/thread.html/fd110f4ace2d8364c7d9190e1993cde92f79e4eb85576ed9285686ac%40%3Ccvs.httpd.apache.org%3E
Mailing List
https://seclists.org/bugtraq/2019/Apr/16
Patch
Third Party Advisory
Mailing List
https://security.gentoo.org/glsa/201904-20
Third Party Advisory
https://support.f5.com/csp/article/K32957101
Third Party Advisory
https://www.exploit-db.com/exploits/46676/
Third Party Advisory
Exploit
VDB Entry
https://www.synology.com/security/advisory/Synology_SA_19_14
Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0211
US Government Resource