Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-1067

In Undertow before versions 7.1.2.CR1, 7.1.2.GA it was found that the fix for CVE-2016-4993 was incomplete and Undertow web server is vulnerable to the injection of arbitrary HTTP headers, and also response splitting, due to insufficient sanitization and validation of user input before the input is used as part of an HTTP header value.

Published

2018-05-21T17:29:00.917

Last Modified

2024-11-21T03:59:06.580

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.1 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

4.9

Weaknesses

Type: Secondary
CWE-113
Type: Primary
CWE-113

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	redhat	undertow	< 1.4.25	Yes
Application	redhat	undertow	< 2.0.5	Yes
Application	redhat	jboss_enterprise_application_platform	7.1	Yes
Operating System	redhat	enterprise_linux	6.0	No
Operating System	redhat	enterprise_linux	7.0	No
Application	redhat	virtualization_host	4.0	Yes
Operating System	redhat	enterprise_linux	7.0	No

References

https://access.redhat.com/errata/RHSA-2018:1247 Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1248 Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1249 Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1251 Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2643 Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2019:0877 Vendor Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1067 Issue Tracking, Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1247 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1248 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1249 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1251 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2643 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2019:0877 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1067 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)