CVE-2017-12613

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input.

References

http://www.apache.org/dist/apr/Announcement1.x.html

http://www.securityfocus.com/bid/101560

http://www.securitytracker.com/id/1042004

https://access.redhat.com/errata/RHSA-2017:3270

https://access.redhat.com/errata/RHSA-2017:3475

https://access.redhat.com/errata/RHSA-2017:3476

https://access.redhat.com/errata/RHSA-2017:3477

https://access.redhat.com/errata/RHSA-2018:0316

https://access.redhat.com/errata/RHSA-2018:0465

https://access.redhat.com/errata/RHSA-2018:0466

https://access.redhat.com/errata/RHSA-2018:1253

https://lists.apache.org/thread.html/12489f2e4a9f9d390235c16298aca0d20658789de80d553513977f13%40%3Cannounce.apache.org%3E

https://lists.debian.org/debian-lts-announce/2017/11/msg00005.html

https://svn.apache.org/viewvc?view=revision&revision=1807976

Details

Source: MITRE

Published: 2017-10-24

Updated: 2019-10-03

Type: CWE-125

Risk Information

CVSS v2

Base Score: 3.6

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:P

Impact Score: 4.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Impact Score: 5.2

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:apache:portable_runtime:*:*:*:*:*:*:*:* versions up to 1.6.2 (inclusive)

Tenable Plugins

View all (32 total)

IDNameProductFamilySeverity
144075IBM HTTP Server 7.0.0.0 < 7.0.0.45 / 8.0.0.0 < 8.0.0.15 / 8.5.0.0 < 8.5.5.14 / 9.0.0.0 < 9.0.0.7 Information Disclosure (304539)NessusWeb Servers
high
127354NewStart CGSL MAIN 4.05 : apr Vulnerability (NS-SA-2019-0115)NessusNewStart CGSL Local Security Checks
high
127140NewStart CGSL MAIN 5.04 : apr Vulnerability (NS-SA-2019-0001)NessusNewStart CGSL Local Security Checks
high
124955EulerOS Virtualization 3.0.1.0 : apr (EulerOS-SA-2019-1452)NessusHuawei Local Security Checks
high
124877EulerOS Virtualization for ARM 64 3.0.1.0 : apr (EulerOS-SA-2019-1374)NessusHuawei Local Security Checks
high
700518macOS < 10.14 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
121778Photon OS 1.0: Apr PHSA-2017-1.0-0093NessusPhotonOS Local Security Checks
critical
121776Photon OS 2.0: Apr PHSA-2017-0053NessusPhotonOS Local Security Checks
high
118678F5 Networks BIG-IP : Apache Portable Runtime vulnerability (K52319810)NessusF5 Networks Local Security Checks
high
118575macOS 10.13.6 Multiple Vulnerabilities (Security Update 2018-002)NessusMacOS X Local Security Checks
critical
118573macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-005)NessusMacOS X Local Security Checks
critical
118178macOS < 10.14 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
111903Photon OS 1.0: Apr / Krb5 / Linux / Ncurses / Subversion PHSA-2017-1.0-0093 (deprecated)NessusPhotonOS Local Security Checks
critical
111902Photon OS 2.0: Apr / Ncurses PHSA-2017-0053 (deprecated)NessusPhotonOS Local Security Checks
high
109889SUSE SLES11 Security Update : libapr1 (SUSE-SU-2018:1322-1)NessusSuSE Local Security Checks
high
109719openSUSE Security Update : libapr1 (openSUSE-2018-450)NessusSuSE Local Security Checks
high
109679SUSE SLES12 Security Update : libapr1 (SUSE-SU-2018:1196-1)NessusSuSE Local Security Checks
high
109391RHEL 6 / 7 : apr (RHSA-2018:1253)NessusRed Hat Local Security Checks
high
107208RHEL 6 / 7 : Red Hat JBoss Web Server 3.1.0 Service Pack 2 (RHSA-2018:0466)NessusRed Hat Local Security Checks
high
105866Fedora 27 : apr (2017-48368de8c9)NessusFedora Local Security Checks
high
105369RHEL 6 : Red Hat JBoss Core Services Apache HTTP Server 2.4.23 (RHSA-2017:3477) (Optionsbleed)NessusRed Hat Local Security Checks
critical
105368RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.23 (RHSA-2017:3476) (Optionsbleed)NessusRed Hat Local Security Checks
critical
105052Amazon Linux AMI : apr (ALAS-2017-928)NessusAmazon Linux Local Security Checks
high
105048Virtuozzo 7 : apr / apr-devel (VZLSA-2017-3270)NessusVirtuozzo Local Security Checks
high
104922EulerOS 2.0 SP2 : apr (EulerOS-SA-2017-1304)NessusHuawei Local Security Checks
high
104921EulerOS 2.0 SP1 : apr (EulerOS-SA-2017-1303)NessusHuawei Local Security Checks
high
104866Scientific Linux Security Update : apr on SL6.x, SL7.x i386/x86_64 (20171129)NessusScientific Linux Local Security Checks
high
104842RHEL 6 / 7 : apr (RHSA-2017:3270)NessusRed Hat Local Security Checks
high
104838Oracle Linux 6 / 7 : apr (ELSA-2017-3270)NessusOracle Linux Local Security Checks
high
104818CentOS 6 / 7 : apr (CESA-2017:3270)NessusCentOS Local Security Checks
high
104603Fedora 26 : apr (2017-8d2cfc3752)NessusFedora Local Security Checks
high
104412Debian DLA-1162-1 : apr security updateNessusDebian Local Security Checks
high