Executive Summary

Informations
NameCVE-2019-0220First vendor Publication2019-06-11
VendorCveLast vendor Modification2019-06-25

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0220

CWE : Common Weakness Enumeration

%idName
100 %CWE-399Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application34
Os4
Os2
Os3
Os2

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/107670
BUGTRAQ https://seclists.org/bugtraq/2019/Apr/5
CONFIRM https://httpd.apache.org/security/vulnerabilities_24.html
https://security.netapp.com/advisory/ntap-20190625-0007/
https://support.f5.com/csp/article/K44591505
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr...
DEBIAN https://www.debian.org/security/2019/dsa-4422
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
MISC https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
MLIST http://www.openwall.com/lists/oss-security/2019/04/02/6
https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e8029...
https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277...
https://lists.debian.org/debian-lts-announce/2019/04/msg00008.html
REDHAT https://access.redhat.com/errata/RHSA-2019:2343
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html
UBUNTU https://usn.ubuntu.com/3937-1/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2019-08-23 12:07:43
  • Multiple Updates
2019-08-16 12:06:56
  • Multiple Updates
2019-08-07 12:10:21
  • Multiple Updates
2019-07-24 12:04:59
  • Multiple Updates
2019-06-25 17:19:16
  • Multiple Updates
2019-06-12 21:19:20
  • Multiple Updates
2019-06-12 05:19:14
  • First insertion