7.3 CVE-2023-38709
Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses.
This issue affects Apache HTTP Server: through 2.4.58.
https://nvd.nist.gov/vuln/detail/CVE-2023-38709
Categories
CWE-1284 : Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties. Automated static analysis, commonly referred to as Static Application Security Testing (SAST), can find some instances of this weakness by analyzing source code (or binary/compiled code) without having to execute it. Typically, this is done by building a model of data flow and control flow, then searching for potentially-vulnerable patterns that connect "sources" (origins of input) with "sinks" (destinations where the data interacts with external components, a lower layer such as the OS, etc.) Chain: Javascript engine code does not perform a length check (CWE-1284) leading to integer overflow (CWE-190) causing allocation of smaller buffer than expected (CWE-131) resulting in a heap-based buffer overflow (CWE-122) Chain: Python library does not limit the resources used to process images that specify a very large number of bands (CWE-1284), leading to excessive memory consumption (CWE-789) or an integer overflow (CWE-190). lack of validation of length field leads to infinite loop lack of validation of string length fields allows memory consumption or buffer over-read
References
af854a3a-2127-422b-91ae-364da2661108
| http://seclists.org/fulldisclosure/2024/Jul/18 Mailing List Third Party Advisory |
| http://www.openwall.com/lists/oss-security/2024/04/04/3 Mailing List Third Party Advisory |
| http://www.openwall.com/lists/oss-security/2025/07/10/2 |
| http://www.openwall.com/lists/oss-security/2025/07/10/3 |
| https://httpd.apache.org/security/vulnerabilities_24.html Vendor Advisory |
| https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://security.netapp.com/advisory/ntap-20240415-0013/ Third Party Advisory |
| https://support.apple.com/kb/HT214119 Third Party Advisory |
security@apache.org
| http://seclists.org/fulldisclosure/2024/Jul/18 Mailing List Third Party Advisory |
| http://www.openwall.com/lists/oss-security/2024/04/04/3 Mailing List Third Party Advisory |
| https://httpd.apache.org/security/vulnerabilities_24.html Vendor Advisory |
| https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr... Mailing List Third Party Advisory |
| https://security.netapp.com/advisory/ntap-20240415-0013/ Third Party Advisory |
| https://support.apple.com/kb/HT214119 Third Party Advisory |
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* | < 2.4.59 | |
| Configuration 2 | ||
| cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | ||
| Configuration 3 | ||
| cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* | ||
| Configuration 4 | ||
| cpe:2.3:a:netapp:ontap:9:*:*:*:*:*:*:* | ||
| cpe:2.3:a:netapp:ontap_tools:10:*:*:*:*:vmware_vsphere:*:* | ||
| cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:* | ||
| Configuration 5 | ||
| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | < 14.6 | |
REMEDIATION
EXPLOITS
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
POC Github
| Url |
|---|
| No known exploits |
Other Nist (github, ...)
| Url |
|---|
| No known exploits |
CAPEC
Common Attack Pattern Enumerations and Classifications
| id | description | severity |
|---|---|---|
| No entry | ||
Cybersecurity needs ?
Strengthen software security from the outset with our DevSecOps expertise
Integrate security right from the start of the software development cycle for more robust applications and greater customer confidence.
Our team of DevSecOps experts can help you secure your APIs, data pipelines, CI/CD chains, Docker containers and Kubernetes deployments.
