CVE-2022-22728

libapreq2 multipart form parse memory corruption

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A flaw in Apache libapreq2 versions 2.16 and earlier could cause a buffer overflow while processing multipart form uploads. A remote attacker could send a request causing a process crash which could lead to a denial of service attack.

Un fallo en Apache libapreq2 versiones 2.16 y anteriores, podría causar un desbordamiento de búfer mientras son procesadas cargas de formularios multiparte. Un atacante remoto podría enviar una solicitud que causara un bloqueo del proceso, lo que podría conllevar a un ataque de denegación de servicio.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-01-06 CVE Reserved
2022-08-25 CVE Published
2024-04-15 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (16)

URL	Tag	Source
http://www.openwall.com/lists/oss-security/2022/08/25/3	Mailing List
http://www.openwall.com/lists/oss-security/2022/08/25/4	Mailing List
http://www.openwall.com/lists/oss-security/2022/08/26/4	Mailing List
http://www.openwall.com/lists/oss-security/2022/12/29/1	Mailing List
http://www.openwall.com/lists/oss-security/2022/12/30/4	Mailing List
http://www.openwall.com/lists/oss-security/2022/12/31/1	Mailing List
http://www.openwall.com/lists/oss-security/2022/12/31/5	Mailing List
http://www.openwall.com/lists/oss-security/2023/01/02/1	Mailing List
http://www.openwall.com/lists/oss-security/2023/01/02/2	Mailing List
http://www.openwall.com/lists/oss-security/2023/01/03/2	Mailing List
https://lists.apache.org/thread/2fsjoor96d47vtkpf76x4yo06nccvy1y	Mailing List
https://lists.debian.org/debian-lts-announce/2023/01/msg00009.html	Mailing List

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2PUUS3JL44UUSLJTSXE46HVKZIW7E7PE	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3HZZKVHYYWACPWONPEFRNPIRE3HYLV4T	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BE5MEHGIQUEIISBCVHM43IN2NBDXBFOJ	2023-11-07
https://security.gentoo.org/glsa/202305-20	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Apache Search vendor "Apache"		Libapreq2 Search vendor "Apache" for product "Libapreq2"				<= 2.16 Search vendor "Apache" for product "Libapreq2" and version " <= 2.16"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				35 Search vendor "Fedoraproject" for product "Fedora" and version "35"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				37 Search vendor "Fedoraproject" for product "Fedora" and version "37"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				10.0 Search vendor "Debian" for product "Debian Linux" and version "10.0"		-		Affected