CVE-2022-37436

Published on: Not Yet Published

Last Modified on: 01/25/2023 01:58:00 AM UTC

CVE-2022-37436

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Certain versions of Http Server from Apache contain the following vulnerability:

Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.

CVE-2022-37436 has been assigned by [email protected] to track the vulnerability - currently rated as MEDIUM severity.
Affected Vendor/Software: Apache Software Foundation - Apache HTTP Server version = 0

CVSS3 Score: 5.3 - MEDIUM

Attack Vector ^ⓘ	Attack Complexity	Privileges Required	User Interaction
NETWORK	LOW	NONE	NONE
Scope	Confidentiality Impact	Integrity Impact	Availability Impact
UNCHANGED	NONE	LOW	NONE

CVE References

Description	Tags ^ⓘ	Link
Apache HTTP Server 2.4 vulnerabilities - The Apache HTTP Server Project	httpd.apache.org text/html	MISC httpd.apache.org/security/vulnerabilities_24.html

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Related QID Numbers

150640 Apache HTTP Server Prior to 2.4.55 Multiple Security Vulnerabilities
160477 Oracle Enterprise Linux Security Update for httpd:2.4 (ELSA-2023-0852)
160485 Oracle Enterprise Linux Security Update for httpd (ELSA-2023-0970)
181620 Debian Security Update for apache2 (DLA 3351-1)
181660 Debian Security Update for apache2 (DSA 5376-1)
199145 Ubuntu Security Notification for Apache Hypertext Transfer Protocol (HTTP) Server Vulnerabilities (USN-5839-1)
241210 Red Hat Update for httpd:2.4 (RHSA-2023:0852)
241220 Red Hat Update for httpd (RHSA-2023:0970)
283640 Fedora Security Update for httpd (FEDORA-2023-f6ff3f85eb)
283670 Fedora Security Update for httpd (FEDORA-2023-6d4055d482)
354767 Amazon Linux Security Advisory for httpd : ALAS2-2023-1938
354845 Amazon Linux Security Advisory for httpd24 : ALAS-2023-1711
355218 Amazon Linux Security Advisory for httpd : ALAS2023-2023-115
378372 IBM Hypertext Transfer Protocol (HTTP) Server Multiple Vulnerabilities (6955577)
502635 Alpine Linux Security Update for apache2
672790 EulerOS Security Update for httpd (EulerOS-SA-2023-1550)
672801 EulerOS Security Update for httpd (EulerOS-SA-2023-1525)
672865 EulerOS Security Update for httpd (EulerOS-SA-2023-1596)
672903 EulerOS Security Update for httpd (EulerOS-SA-2023-1780)
672910 EulerOS Security Update for httpd (EulerOS-SA-2023-1758)
672999 EulerOS Security Update for httpd (EulerOS-SA-2023-1847)
673013 EulerOS Security Update for httpd (EulerOS-SA-2023-1872)
691030 Free Berkeley Software Distribution (FreeBSD) Security Update for apache httpd (00919005-96a3-11ed-86e9-d4c9ef517024)
753594 SUSE Enterprise Linux Security Update for apache2 (SUSE-SU-2023:0183-1)
753595 SUSE Enterprise Linux Security Update for apache2 (SUSE-SU-2023:0185-1)
753638 SUSE Enterprise Linux Security Update for apache2 (SUSE-SU-2023:0294-1)
753653 SUSE Enterprise Linux Security Update for apache2 (SUSE-SU-2023:0321-1)
753658 SUSE Enterprise Linux Security Update for apache2 (SUSE-SU-2023:0322-1)
905361 Common Base Linux Mariner (CBL-Mariner) Security Update for httpd (13155)
905369 Common Base Linux Mariner (CBL-Mariner) Security Update for httpd (13167)
905475 Common Base Linux Mariner (CBL-Mariner) Security Update for httpd (13155-1)
905525 Common Base Linux Mariner (CBL-Mariner) Security Update for httpd (13167-1)
940931 AlmaLinux Security Update for httpd:2.4 (ALSA-2023:0852)
940948 AlmaLinux Security Update for httpd (ALSA-2023:0970)
960655 Rocky Linux Security Update for httpd:2.4 (RLSA-2023:0852)
960890 Rocky Linux Security Update for httpd (RLSA-2023:0970)

Exploit/POC from Github

Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulti…

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Apache	Http Server	All	All	All	All

cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*:

No vendor comments have been submitted for this CVE

Social Mentions

Source	Title	Posted (UTC)
@CVEreport	CVE-2022-37436 : Prior to #Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be trun… twitter.com/i/web/status/1…	2023-01-17 20:03:53
@omokazuki	SIOSセキュリティブログを更新しました。 Apache HTTP Serverの脆弱性情報(Moderate: CVE-2006-20001, CVE-2022-36760, CVE-2022-37436)… twitter.com/i/web/status/1…	2023-01-17 22:28:21
/r/netcve	CVE-2022-37436	2023-01-17 21:38:44
/r/blueteamsec	Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server (CVE-2022-28331, CVE-2022-36760, CVE-2022-37436, CVE-2022-25147, CVE-2006-20001) - workarounds none	2023-03-06 09:08:55