Lucene search

ApacheCVE-2024-36471

HistoryJun 10, 2024 - 10:15 p.m.

CVE-2024-36471

2024-06-1022:15:11

CWE-200

CWE-20

CWE-918

apache

web.nvd.nist.gov

dns rebinding

apache allura

upgrade

disable entry points

security issue

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

Percentile

9.0%

JSON

Import functionality is vulnerable to DNS rebinding attacks between verification and processing of the URL. Project administrators can run these imports, which could cause Allura to read from internal services and expose them.

This issue affects Apache Allura from 1.0.1 through 1.16.0.

Users are recommended to upgrade to version 1.17.0, which fixes the issue. If you are unable to upgrade, set “disable_entry_points.allura.importers = forge-tracker, forge-discussion” in your .ini config file.

Affected configurations

Vulners

Vulnrichment

Node

apachealluraRange≤1.16.0

VendorProductVersionCPE
apacheallura*cpe:2.3:a:apache:allura:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apache	allura	*	cpe:2.3:a:apache:allura::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache Allura",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "1.16.0",
        "status": "affected",
        "version": "1.0.1",
        "versionType": "semver"
      }
    ]
  }
]

References

lists.apache.org/thread/g43164t4bcp0tjwt4opxyks4svm8kvbh

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVE-2024-36471