CVE-2022-37436

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.55

Description The issue is related to the mod proxy module in Apache HTTP Server, where it fails to properly handle CRLF sequences in HTTP headers. This can be exploited by a remote attacker to perform HTTP response splitting attacks. A malicious backend can cause response headers to be truncated early, resulting in some headers being incorporated into the response body, which can bypass security measures if those headers have a security purpose.

Recommendations For versions prior to 2.4.55, update to Apache HTTP Server version 2.4.55 or later to resolve the issue. As a temporary workaround, consider restricting access to the mod proxy module to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-436CWE-113

Related Identifiers

ALSA-2023:0852

ALSA-2023:0970

ALT-PU-2023-1165

ALT-PU-2023-1189

ALT-PU-2023-1260

ALT-PU-2023-1380

AZL-13167

AZL-43456

AZL-45000

BDU:2023-00496

BIT-APACHE-2022-37436

CESA-2023_0852

CVE-2022-37436

DLA-3351-1

DSA-5376-1

MGASA-2023-0032

OESA-2023-1052

OPENSUSE-SU-2023_0322-1

OPENSUSE-SU-2024:12635-1

RHSA-2023:0852

RHSA-2023:0970

RHSA-2023:4629

RHSA-2023_0852

RHSA-2023_0970

RLSA-2023:0852

RLSA-2023:0970

SUSE-SU-2023:0183-1

SUSE-SU-2023:0185-1

SUSE-SU-2023:0294-1

SUSE-SU-2023:0321-1

SUSE-SU-2023:0322-1

USN-5839-1

USN-5839-2

Affected Products

Alt Linux

Almalinux

Apache Http Server

Astra Linux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

CVE-2022-37436

Weakness Enumeration

Related Identifiers

Affected Products

References · 92