Lucene search
ApacheCVELIST:CVE-2022-24112HistoryFeb 11, 2022 - 12:20 p.m.
CVE-2022-24112 apisix/batch-requests plugin allows overwriting the X-REAL-IP header
2022-02-1112:20:13
CWE-290
apache
www.cve.org
4
An attacker can abuse the batch-requests plugin to send requests to bypass the IP restriction of Admin API. A default configuration of Apache APISIX (with default API key) is vulnerable to remote code execution. When the admin key was changed or the port of Admin API was changed to a port different from the data panel, the impact is lower. But there is still a risk to bypass the IP restriction of Apache APISIXβs data panel. There is a check in the batch-requests plugin which overrides the client IP with its real remote IP. But due to a bug in the code, this check can be bypassed.
CNA Affected
[
{
"product": "Apache APISIX",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "2.12.1",
"status": "affected",
"version": "Apache APISIX 2.12",
"versionType": "custom"
},
{
"lessThan": "2.10.4",
"status": "affected",
"version": "Apache APISIX 2.10",
"versionType": "custom"
},
{
"lessThan": "Apache APISIX 1*",
"status": "affected",
"version": "1.3",
"versionType": "custom"
}
]
}
]Related
nessus
nessus
Apache APISIX < 2.10.4 / 2.11.x < 2.12.1 RCE
2022-04-26 00:00:00
githubexploit
githubexploit
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2022-03-16 09:19:12
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2022-02-25 15:17:28
Exploit for Authentication Bypass by Spoofing in Apache Apisix
2024-06-03 17:33:59
prion
prion
Default configuration
2022-02-11 13:15:00
nuclei
nuclei
Apache APISIX - Remote Code Execution
2022-02-23 07:55:27
zdt
zdt
Apache APISIX 2.12.1 - Remote Code Execution Exploit
2022-03-16 00:00:00
Apache APISIX Remote Code Execution Exploit
2022-03-07 00:00:00
nvd
nvd
CVE-2022-24112
2022-02-11 13:15:08
cnvd
cnvd
Apache Apisix Remote Code Execution Vulnerability
2022-02-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache APISIX Remote Code Execution (CVE-2022-24112)
2022-04-05 00:00:00
packetstorm
packetstorm
Apache APISIX 2.12.1 Remote Code Execution
2022-03-16 00:00:00
Apache APISIX Remote Code Execution
2022-03-07 00:00:00
osv
osv
CVE-2022-24112
2022-02-11 13:15:08
BIT-apisix-2022-24112
2024-03-06 10:51:05
metasploit
metasploit
APISIX Admin API default access token RCE
2022-02-28 17:09:18
attackerkb
attackerkb
CVE-2022-24112
2022-02-11 00:00:00
CVE-2021-38406
2021-09-09 00:00:00
cisa_kev
cisa_kev
Apache APISIX Authentication Bypass Vulnerability
2022-08-25 00:00:00
cve
cve
CVE-2022-24112
2022-02-11 13:15:08
exploitdb
exploitdb
Apache APISIX 2.12.1 - Remote Code Execution (RCE)
2022-03-16 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2022-03-11 20:26:58
thn
thn
CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog
2022-08-29 04:23:00
malwarebytes
malwarebytes
Chinese APT's favorite vulnerabilities revealed
2022-10-13 16:15:00
qualysblog
qualysblog
avleonov
avleonov
Joint Advisory AA22-279A and Vulristics
2022-10-21 20:10:13
ics
ics