CVE-2020-9490high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via "H2Push off" will mitigate this vulnerability for unpatched servers.
References
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2020-9490
https://security.gentoo.org/glsa/202008-04
https://lists.apache.org/thread.html/[email protected]%3Cdev.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Cdev.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Cdev.httpd.apache.org%3E
https://security.netapp.com/advisory/ntap-20200814-0005/
https://usn.ubuntu.com/4458-1/
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00068.html
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00071.html
https://www.debian.org/security/2020/dsa-4757
https://www.oracle.com/security-alerts/cpuoct2020.html
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00081.html
http://packetstormsecurity.com/files/160392/Apache-2.4.43-mod_http2-Memory-Corruption.html
https://www.oracle.com/security-alerts/cpujan2021.html
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
Details
Source: MITRE
Published: 2020-08-07
Updated: 2021-06-06
Type: CWE-444
Risk Information
CVSS v2
Base Score: 5
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 10
Severity: MEDIUM
CVSS v3
Base Score: 7.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 3.9
Severity: HIGH
Vulnerable Software
Configuration 1
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147691 | EulerOS Virtualization 2.9.0 : httpd (EulerOS-SA-2021-1663) | Nessus | Huawei Local Security Checks | high |
| 147602 | EulerOS Virtualization 2.9.1 : httpd (EulerOS-SA-2021-1602) | Nessus | Huawei Local Security Checks | critical |
| 145811 | CentOS 8 : httpd:2.4 (CESA-2020:3714) | Nessus | CentOS Local Security Checks | high |
| 143613 | SUSE SLES15 Security Update : apache2 (SUSE-SU-2020:3067-1) | Nessus | SuSE Local Security Checks | high |
| 143158 | Amazon Linux 2 : httpd (ALAS-2020-1490) | Nessus | Amazon Linux Local Security Checks | critical |
| 142207 | openSUSE Security Update : apache2 (openSUSE-2020-1792) | Nessus | SuSE Local Security Checks | high |
| 141337 | EulerOS 2.0 SP9 : httpd (EulerOS-SA-2020-2165) | Nessus | Huawei Local Security Checks | high |
| 141330 | EulerOS 2.0 SP9 : httpd (EulerOS-SA-2020-2175) | Nessus | Huawei Local Security Checks | high |
| 140966 | EulerOS Virtualization for ARM 64 3.0.6.0 : httpd (EulerOS-SA-2020-2018) | Nessus | Huawei Local Security Checks | critical |
| 140635 | Amazon Linux 2 : mod_http2 (ALAS-2020-1493) | Nessus | Amazon Linux Local Security Checks | high |
| 140581 | RHEL 8 : httpd:2.4 (RHSA-2020:3734) | Nessus | Red Hat Local Security Checks | high |
| 140525 | Oracle Linux 8 : httpd:2.4 (ELSA-2020-3714) | Nessus | Oracle Linux Local Security Checks | high |
| 140523 | RHEL 8 : httpd:2.4 (RHSA-2020:3726) | Nessus | Red Hat Local Security Checks | high |
| 140492 | RHEL 8 : httpd:2.4 (RHSA-2020:3714) | Nessus | Red Hat Local Security Checks | high |
| 112580 | Apache 2.4.x < 2.4.46 Multiple Vulnerabilities | Web Application Scanning | Component Vulnerability | critical |
| 140252 | SUSE SLES12 Security Update : apache2 (SUSE-SU-2020:2450-1) | Nessus | SuSE Local Security Checks | medium |
| 140104 | Debian DSA-4757-1 : apache2 - security update | Nessus | Debian Local Security Checks | critical |
| 140086 | Amazon Linux AMI : httpd24 (ALAS-2020-1418) | Nessus | Amazon Linux Local Security Checks | critical |
| 140078 | openSUSE Security Update : apache2 (openSUSE-2020-1293) | Nessus | SuSE Local Security Checks | critical |
| 140076 | openSUSE Security Update : apache2 (openSUSE-2020-1285) | Nessus | SuSE Local Security Checks | critical |
| 139957 | EulerOS 2.0 SP8 : httpd (EulerOS-SA-2020-1854) | Nessus | Huawei Local Security Checks | critical |
| 139906 | SUSE SLES15 Security Update : apache2 (SUSE-SU-2020:2344-1) | Nessus | SuSE Local Security Checks | critical |
| 139884 | Fedora 31 : mod_http2 (2020-b58dc5df38) | Nessus | Fedora Local Security Checks | high |
| 139844 | SUSE SLED15 / SLES15 Security Update : apache2 (SUSE-SU-2020:2311-1) | Nessus | SuSE Local Security Checks | critical |
| 139736 | Fedora 32 : mod_http2 (2020-8122a8daa2) | Nessus | Fedora Local Security Checks | high |
| 139609 | Photon OS 2.0: Httpd PHSA-2020-2.0-0272 | Nessus | PhotonOS Local Security Checks | critical |
| 139596 | Ubuntu 16.04 LTS / 18.04 LTS / 20.04 : Apache HTTP Server vulnerabilities (USN-4458-1) | Nessus | Ubuntu Local Security Checks | critical |
| 139574 | Apache 2.4.x < 2.4.46 Multiple Vulnerabilities | Nessus | Web Servers | critical |
| 139439 | GLSA-202008-04 : Apache: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
| 139436 | FreeBSD : Apache httpd -- Multiple vulnerabilities (76700d2f-d959-11ea-b53c-d4c9ef517024) | Nessus | FreeBSD Local Security Checks | critical |