Lucene search
Ubuntu.comUB:CVE-2023-31122HistoryOct 23, 2023 - 12:00 a.m.
CVE-2023-31122
2023-10-2300:00:00
ubuntu.com
ubuntu.com
89
apache http server
mod_macro
cve-2023-31122
vulnerability
out-of-bounds read
low-impact
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.8%
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | apache2 | < 2.4.29-1ubuntu4.27+esm1 | UNKNOWN |
| ubuntu | 20.04 | noarch | apache2 | < 2.4.41-4ubuntu3.15 | UNKNOWN |
| ubuntu | 22.04 | noarch | apache2 | < 2.4.52-1ubuntu4.7 | UNKNOWN |
| ubuntu | 23.04 | noarch | apache2 | < 2.4.55-1ubuntu2.1 | UNKNOWN |
| ubuntu | 23.10 | noarch | apache2 | < 2.4.57-2ubuntu2.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | apache2 | < 2.4.7-1ubuntu4.22+esm9 | UNKNOWN |
| ubuntu | 16.04 | noarch | apache2 | < 2.4.18-2ubuntu3.17+esm11 | UNKNOWN |
References
httpd.apache.org/security/vulnerabilities_24.html#CVE-2023-31122
launchpad.net/bugs/cve/CVE-2023-31122
nvd.nist.gov/vuln/detail/CVE-2023-31122
security-tracker.debian.org/tracker/CVE-2023-31122
ubuntu.com/security/notices/USN-6506-1
ubuntu.com/security/notices/USN-6510-1
www.cve.org/CVERecord?id=CVE-2023-31122
www.openwall.com/lists/oss-security/2023/10/19/4
Related
debiancve
debiancve
CVE-2023-31122
2023-10-23 07:15:11
nessus
nessus
Fedora 37 : httpd (2023-3d1bf0ee44)
2023-11-07 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : apache2 (SUSE-SU-2023:4430-1)
2023-11-14 00:00:00
Fedora 39 : httpd (2023-606f830772)
2023-11-07 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2326
2024-01-23 12:20:08
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM Rational ClearCase [CVE-2023-31122]
2024-03-06 06:45:04
openvas
openvas
Apache HTTP Server < 2.4.58 'mod_macro' Out-of-bounds Read Vulnerability - Windows
2023-10-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4431-1)
2023-11-14 00:00:00
osv
osv
Moderate: httpd security update
2024-04-30 00:00:00
Moderate: httpd security update
2024-05-10 14:32:42
BIT-apache-2023-31122
2024-03-06 10:50:54
nvd
nvd
CVE-2023-31122
2023-10-23 07:15:11
almalinux
almalinux
Moderate: httpd security update
2024-04-30 00:00:00
Moderate: httpd:2.4 security update
2024-05-22 00:00:00
rocky
rocky
httpd security update
2024-05-10 14:32:42
httpd:2.4 security update
2024-06-14 13:59:30
cvelist
cvelist
CVE-2023-31122 Apache HTTP Server: mod_macro buffer over-read
2023-10-23 06:51:59
f5
f5
K000137326 : Apache mod_macro vulnerability CVE-2023-31122
2023-10-23 00:00:00
alpinelinux
alpinelinux
CVE-2023-31122
2023-10-23 07:15:11
fedora
fedora
[SECURITY] Fedora 38 Update: httpd-2.4.58-1.fc38
2023-10-24 01:23:53
[SECURITY] Fedora 37 Update: httpd-2.4.58-1.fc37
2023-11-07 02:32:36
[SECURITY] Fedora 39 Update: httpd-2.4.58-1.fc39
2023-11-03 19:03:08
oraclelinux
oraclelinux
httpd security update
2024-05-03 00:00:00
httpd:2.4 security update
2024-05-24 00:00:00
redhat
redhat
(RHSA-2024:2278) Moderate: httpd security update
2024-04-30 06:15:15
(RHSA-2024:3121) Moderate: httpd:2.4 security update
2024-05-22 06:35:40
veracode
veracode
Out-of-bounds Read
2023-10-20 06:57:49
cnvd
cnvd
Apache HTTP Server Buffer Overflow Vulnerability (CNVD-2023-93320)
2023-10-28 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerability
2023-11-23 00:00:00
Apache HTTP Server vulnerabilities
2023-11-22 00:00:00
cve
cve
CVE-2023-31122
2023-10-23 07:15:11
redhatcve
redhatcve
CVE-2023-31122
2023-10-21 01:51:13
prion
prion
Cross site scripting
2023-10-23 07:15:00
redos
redos
ROS-20231030-01
2023-10-30 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0131
2023-10-31 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0502
2023-11-01 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0680
2023-11-03 00:00:00
amazon
amazon
Important: httpd24
2023-10-30 23:31:00
Important: httpd
2023-10-30 23:59:00
slackware
slackware
[slackware-security] httpd
2023-10-19 19:21:22
kaspersky
kaspersky
KLA61504 Multiple vulnerabilities in Apache HTTP Server
2023-10-19 00:00:00
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2023-10-19 00:00:00
mageia
mageia
Updated apache packages fix security vulnerabilities
2023-10-28 00:49:40
debian
debian
[SECURITY] [DLA 3818-1] apache2 security update
2024-05-25 11:06:45
[SECURITY] [DSA 5662-1] apache2 security update
2024-04-16 18:32:07
hp
hp
HP Device Manager Vulnerability Update (5.0.12)
2024-01-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.8%
Related for UB:CVE-2023-31122