CVE-2018-1312

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Apache httpd versions 2.2.0 through 2.4.29

Description The issue is related to the generation of an HTTP Digest authentication challenge, where the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. This could allow an attacker to replay HTTP requests across servers in a cluster using a common Digest authentication configuration without detection. The estimated number of potentially affected devices is not specified.

Recommendations For Apache httpd versions 2.2.0 through 2.4.29, consider updating to a version where this issue is fixed, as the use of a pseudo-random seed for generating nonces is crucial for preventing replay attacks. As a temporary workaround, consider restricting access to the Digest authentication configuration to minimize the risk of exploitation. Avoid using the same Digest authentication configuration across multiple servers in a cluster until the issue is resolved.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

ALT-PU-2018-1519

BDU:2018-01420

CESA-2019_1898

CVE-2018-1312

DLA-1389-1

DSA-4164-1

MGASA-2018-0460

RHSA-2018:3558

RHSA-2019:0367

RHSA-2019:1898

RHSA-2019_1898

SUSE-SU-2018:0879-1

SUSE-SU-2018:0901-1

SUSE-SU-2018:1079-1

SUSE-SU-2018:1161-1

SUSE-SU-2018:1161-2

USN-3627-1

USN-3627-2

USN-3937-2

Affected Products

Alt Linux

Apache Http Server

Apache Httpd

Centos

Red Hat

Suse

Ubuntu

CVE-2018-1312

Weakness Enumeration

Related Identifiers

Affected Products

References · 118