CVE Vulnerabilities

CVE-2018-1312

Improper Authentication

Published: Mar 26, 2018 | Modified: Nov 07, 2023
CVSS 3.x
9.8
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed across servers by an attacker without detection.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name Vendor Start Version End Version
Http_server Apache 2.4.1 2.4.1
Http_server Apache 2.4.20 2.4.20
Http_server Apache 2.4.6 2.4.6
Http_server Apache 2.4.12 2.4.12
Http_server Apache 2.4.3 2.4.3
Http_server Apache 2.4.23 2.4.23
Http_server Apache 2.4.4 2.4.4
Http_server Apache 2.4.10 2.4.10
Http_server Apache 2.4.7 2.4.7
Http_server Apache 2.4.25 2.4.25
Http_server Apache 2.4.26 2.4.26
Http_server Apache 2.4.18 2.4.18
Http_server Apache 2.4.2 2.4.2
Http_server Apache 2.4.17 2.4.17
Http_server Apache 2.4.16 2.4.16
Http_server Apache 2.4.9 2.4.9
Http_server Apache 2.4.27 2.4.27
Http_server Apache 2.4.29 2.4.29
Http_server Apache 2.4.28 2.4.28

Potential Mitigations

References