Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_HTTP_SERVER_CPU_OCT_2023.NASL
HistoryOct 20, 2023 - 12:00 a.m.

Oracle HTTP Server (October 2023 CPU)

2023-10-2000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8
oracle http server
oracle fusion middleware
ssl module
open ssl
oracle communications
cloud native
vulnerability
unauthenticated attacker
network access
http
https
compromise
dos
hang
crash
libxml2
cve-2023-22019
cve-2022-2650
cve-2023-28484
JSON

The version of Oracle HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory.

  • Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data. (CVE-2023-22019)

  • Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: SSL Module (OpenSSL)). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle HTTP Server. (CVE-2022-2650)

  • Vulnerability in the Oracle Communications Cloud Native Core Binding Support Function product of Oracle Communications (component: Install/Upgrade (libxml2)). Supported versions that are affected are 23.1.0-23.1.7 and 23.2.0-23.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Communications Cloud Native Core Binding Support Function. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Communications Cloud Native Core Binding Support Function. (CVE-2023-28484)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(183519);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/23");

  script_cve_id(
    "CVE-2023-2650",
    "CVE-2023-22019",
    "CVE-2023-28484",
    "CVE-2022-37436"
  );
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle HTTP Server (October 2023 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The version of Oracle HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced
in the October 2023 CPU advisory.

  - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The 
    supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker 
    with network access via HTTP to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result
    in unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data. 
    (CVE-2023-22019)

  - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: SSL Module (OpenSSL)). 
    The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated 
    attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful attacks require human 
    interaction from a person other than the attacker. Successful attacks of this vulnerability can result in 
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle HTTP Server. 
    (CVE-2022-2650)

  - Vulnerability in the Oracle Communications Cloud Native Core Binding Support Function product of Oracle 
    Communications (component: Install/Upgrade (libxml2)). Supported versions that are affected are 23.1.0-23.1.7 
    and 23.2.0-23.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP 
    to compromise Oracle Communications Cloud Native Core Binding Support Function. Successful attacks require human 
    interaction from a person other than the attacker. Successful attacks of this vulnerability can result in 
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Communications Cloud 
    Native Core Binding Support Function. (CVE-2023-28484)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpuoct2023cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuoct2023.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the October 2023 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-22019");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/10/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/10/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/10/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:fusion_middleware");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:http_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_http_server_installed.nbin");
  script_require_keys("Oracle/OHS/Installed");

  exit(0);
}

include('oracle_http_server_patch_func.inc');

get_kb_item_or_exit('Oracle/OHS/Installed');
var install_list = get_kb_list_or_exit('Oracle/OHS/*/EffectiveVersion');

var install = branch(install_list, key:TRUE, value:TRUE);

var patches = make_array();
patches['12.2.1.4'] = make_array('fix_ver', '12.2.1.4.230922', 'patch', '35837445');

oracle_http_server_check_vuln(
  install : install,
  min_patches : patches,
  severity : SECURITY_HOLE
);
VendorProductVersionCPE
oraclefusion_middlewarecpe:/a:oracle:fusion_middleware
oraclehttp_servercpe:/a:oracle:http_server

Related

cvelist 5
osv 9
debiancve 3
prion 5
nessus 68
redhatcve 3
cbl_mariner 8
alpinelinux 3
broadcom 2
cve 5
f5 3
veracode 4
ubuntucve 3
ibm 11
openvas 43
ubuntu 3
freebsd 1
cloudlinux 1
mageia 1
githubexploit 1
amazon 1
cgr 1
slackware 1
openssl 1
redos 1
wolfi 1
github 2
huntr 1
oraclelinux 2
rosalinux 2
aix 1
debian 1
almalinux 1
redhat 1
cvelist
cvelist
CVE-2023-22019
2023-10-17 21:02:47
CVE-2023-28484
2023-04-24 00:00:00
CVE-2022-37436 Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting
2023-01-17 19:12:59
osv
osv
CVE-2023-28484
2023-04-24 21:15:09
apache2 vulnerability
2023-02-02 13:34:35
BIT-apache-2022-37436
2024-03-06 10:51:28
debiancve
debiancve
CVE-2023-28484
2023-04-24 21:15:09
CVE-2022-37436
2023-01-17 20:15:11
CVE-2023-2650
2023-05-30 14:15:09
prion
prion
Null pointer dereference
2023-04-24 21:15:00
Design/Logic Flaw
2023-10-17 22:15:00
Code injection
2023-01-17 20:15:00
nessus
nessus
Tenable SecurityCenter 5.22.0 / 5.23.1 / 6.0.0 Apache Header Truncation (TNS-2023-06)
2023-02-23 00:00:00
F5 Networks BIG-IP : Apache HTTPD vulnerability (K000132665)
2023-06-23 00:00:00
F5 Networks BIG-IP : libxml2 vulnerability (K000139641)
2024-05-17 00:00:00
redhatcve
redhatcve
CVE-2023-28484
2023-04-11 19:29:40
CVE-2022-37436
2023-01-18 19:05:38
CVE-2023-2650
2023-05-30 15:11:50
cbl_mariner
cbl_mariner
CVE-2023-28484 affecting package libxml2 for versions less than 2.10.4-1
2023-08-03 02:51:21
CVE-2022-37436 affecting package httpd for versions less than 2.4.55-1
2023-02-14 20:36:06
CVE-2022-37436 affecting package httpd 2.4.54-1
2023-02-14 02:35:58
alpinelinux
alpinelinux
CVE-2023-28484
2023-04-24 21:15:09
CVE-2022-37436
2023-01-17 20:15:11
CVE-2023-2650
2023-05-30 14:15:09
broadcom
broadcom
mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting
2023-06-12 00:00:00
Possible DoS translating ASN.1 object identifiers (CVE-2023-2650)
2024-04-17 00:00:00
cve
cve
CVE-2022-37436
2023-01-17 20:15:11
CVE-2023-28484
2023-04-24 21:15:09
CVE-2023-22019
2023-10-17 22:15:11
f5
f5
K000132665 : Apache HTTPD vulnerability CVE-2022-37436
2023-02-22 00:00:00
K000139641: libxml2 vulnerability CVE-2023-28484
2024-05-17 00:00:00
K000135178 : OpenSSL vulnerability CVE-2023-2650
2023-06-22 00:00:00
veracode
veracode
HTTP Response Splitting
2023-01-21 12:15:11
Denial Of Service (DoS)
2023-04-25 08:12:01
Denial Of Service (DoS)
2023-06-05 02:04:40
ubuntucve
ubuntucve
CVE-2022-37436
2023-01-17 00:00:00
CVE-2023-28484
2023-04-12 00:00:00
CVE-2023-2650
2023-05-30 00:00:00
ibm
ibm
Security Bulletin: CVE-2023-28484 may affect IBM CICS TX Advanced 10.1
2023-06-08 16:41:16
Security Bulletin: IBM MQ is affected by a denial of service vulnerability in OpenSSL (CVE-2023-2650)
2023-09-05 17:56:17
Security Bulletin: IBM InfoSphere Information Server is affected by OpenSSL Vulnerability (CVE-2023-2650)
2024-03-19 23:20:30
openvas
openvas
Ubuntu: Security Advisory (USN-5839-2)
2023-02-03 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2628)
2023-08-08 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2996)
2023-10-13 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerability
2023-02-02 00:00:00
OpenSSL vulnerability
2023-06-22 00:00:00
libxml2 vulnerabilities
2023-04-19 00:00:00
freebsd
freebsd
OpenSSL -- Possible DoS translating ASN.1 identifiers
2023-05-30 00:00:00
cloudlinux
cloudlinux
openssl: Fix of CVE-2023-2650
2023-06-20 13:49:26
mageia
mageia
Updated openssl packages fix security vulnerability
2023-06-08 22:34:59
githubexploit
githubexploit
Exploit for Allocation of Resources Without Limits or Throttling in Openssl
2023-06-05 17:40:59
amazon
amazon
Medium: openssl11
2023-06-21 19:11:00
cgr
cgr
CVE-2023-2650 vulnerabilities
2024-05-19 03:07:16
slackware
slackware
[slackware-security] openssl
2023-05-31 01:33:48
openssl
openssl
Vulnerability in OpenSSL CVE-2023-2650
2023-05-30 00:00:00
redos
redos
ROS-20230621-05
2023-06-21 00:00:00
wolfi
wolfi
CVE-2023-2650 vulnerabilities
2024-05-28 21:07:31
github
github
wger vulnerable to brute force attempts
2022-11-24 18:30:26
Nokogiri updates packaged libxml2 to v2.10.4 to resolve multiple CVEs
2023-04-11 21:48:01
huntr
huntr
No Protection against Bruteforce attacks on Login page
2022-07-23 16:29:38
oraclelinux
oraclelinux
libxml2 security update
2023-08-02 00:00:00
libxml2 security update
2023-08-10 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2321
2024-01-09 09:53:22
Advisory ROSA-SA-2023-2319
2023-12-26 12:04:20
aix
aix
AIX is vulnerable to a denial of service due to libxml2
2023-07-25 11:08:32
debian
debian
[SECURITY] [DLA 3405-1] libxml2 security update
2023-04-30 11:30:47
almalinux
almalinux
Moderate: libxml2 security update
2023-08-08 00:00:00
redhat
redhat
(RHSA-2023:4349) Moderate: libxml2 security update
2023-08-01 07:58:11
JSON
Related for ORACLE_HTTP_SERVER_CPU_OCT_2023.NASL
cvelist5osv9debiancve3prion5nessus68redhatcve3cbl_mariner8alpinelinux3broadcom2cve5f53veracode4ubuntucve3ibm11openvas43ubuntu3freebsd1cloudlinux1mageia1githubexploit1amazon1cgr1slackware1openssl1redos1wolfi1github2huntr1oraclelinux2rosalinux2aix1debian1almalinux1redhat1