CVE-2019-0211

critical-risk

Published 2019-04-08

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.

Do I need to act?

90.9% chance of exploitation in next 30 days

EPSS score — higher than 9% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

1 public exploit available

46676

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (20)

Http Server

Fedora

Ubuntu Linux

Debian Linux

Leap

Oncommand Unified Manager

Jboss Core Services

Openshift Container Platform

Openshift Container Platform For Power

Software Collections

Enterprise Linux

Enterprise Linux Eus

Affected Vendors

Debian Redhat Apache Oracle Canonical Fedoraproject Netapp Opensuse

References (103)

Broken Link http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html

Broken Link http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html

Broken Link http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html

Third Party Advisory http://packetstormsecurity.com/files/152386/Apache-2.4.38-Root-Privilege-Escalat...

Exploit http://packetstormsecurity.com/files/152415/Slackware-Security-Advisory-httpd-Up...

Exploit http://packetstormsecurity.com/files/152441/CARPE-DIEM-Apache-2.4.x-Local-Privil...

Broken Link http://www.apache.org/dist/httpd/CHANGES_2.4.39

Mailing List http://www.openwall.com/lists/oss-security/2019/04/02/3

Mailing List http://www.openwall.com/lists/oss-security/2019/07/26/7

Broken Link http://www.securityfocus.com/bid/107666

Third Party Advisory https://access.redhat.com/errata/RHBA-2019:0959

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:0746

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:0980

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:1296

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:1297

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:1543

Vendor Advisory https://httpd.apache.org/security/vulnerabilities_24.html

Mailing List https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cd...

Mailing List https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e10...

Mailing List https://lists.apache.org/thread.html/890507b85c30adf133216b299cc35cd8cd0346a885a...

and 83 more references

/ 100

critical-risk

Severity 24/34 · High

Exploitability 27/34 · High

Exposure 28/34 · Critical