#VU93542 Input validation error in Apache HTTP Server


Published: 2024-08-23

Vulnerability identifier: #VU93542

Vulnerability risk: High

CVSSv3.1: 7.3 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2024-38475

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Apache HTTP Server
Server applications / Web servers

Vendor: Apache Foundation

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to insufficient validation of user-supplied input in mod_rewrite when first segment of substitution matches filesystem path. A remote attacker can map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL and view contents of files or execute arbitrary code.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Apache HTTP Server: 2.4 - 2.4.59

External links
http://lists.apache.org/thread/tzks8jdmh39hbl723d1xq61mcl4ndv13

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability


IBM Datapower Operations Dashboard update for Apache HTTP Server
Multiple vulnerabilities in IBM Cloud Pak System
Multiple vulnerabilities in Dell NetWorker And NetWorker Management Console
Multiple vulnerabilities in Dell CyberSense OS
Multiple vulnerabilities in cPanel EasyApache
Multiple vulnerabilities in IBM Rational Build Forge
Multiple vulnerabilities in IBM i
Gentoo update for Apache HTTPD
Multiple vulnerabilities in IBM Aspera Console
Multiple vulnerabilities in F5 Traffix SDC Apache HTTPD component