CVE-2024-7347

2024-08-1500:00:00

ubuntu.com

nginx

ngx_http_mp4_module

mp4 file

vulnerability

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS4

5.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:N

AI Score

6.8

Confidence

Low

EPSS

Percentile

13.3%

JSON

NGINX Open Source and NGINX Plus have a vulnerability in the
ngx_http_mp4_module, which might allow an attacker to over-read NGINX
worker memory resulting in its termination, using a specially crafted mp4
file. The issue only affects NGINX if it is built with the
ngx_http_mp4_module and the mp4 directive is used in the configuration
file. Additionally, the attack is possible only if an attacker can trigger
the processing of a specially crafted mp4 file with the
ngx_http_mp4_module. Note: Software versions which have reached End of
Technical Support (EoTS) are not evaluated.

Notes

Author	Note
mdeslaur	In Focal and Jammy, the vulnerable module is in the nginx-extras package in universe. Starting with Noble, it appears that it is now included in the main binary in the nginx package.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchnginx< anyUNKNOWN
ubuntu20.04noarchnginx< anyUNKNOWN
ubuntu22.04noarchnginx< anyUNKNOWN
ubuntu24.04noarchnginx< anyUNKNOWN
ubuntu14.04noarchnginx< anyUNKNOWN
ubuntu16.04noarchnginx< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	nginx	< any	UNKNOWN
ubuntu	20.04	noarch	nginx	< any	UNKNOWN
ubuntu	22.04	noarch	nginx	< any	UNKNOWN
ubuntu	24.04	noarch	nginx	< any	UNKNOWN
ubuntu	14.04	noarch	nginx	< any	UNKNOWN
ubuntu	16.04	noarch	nginx	< any	UNKNOWN