CVE-2017-15715
Last modified
CVE-2017-15715 is a vulnerability of currently unknown severity. In Apache httpd 2.4.0 to 2.4.29, the expression specified in <FilesMatch> could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally blocked, but only by matching the trailing portion of the filename.. EPSS estimates a 86.01% chance of exploitation in the next 30 days.
Description
In Apache httpd 2.4.0 to 2.4.29, the expression specified in <FilesMatch> could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally blocked, but only by matching the trailing portion of the filename.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Apache | Http Server | >= 2.4.0, <= 2.4.29 |
| Debian | Debian Linux | 8.0 |
| Debian | Debian Linux | 9.0 |
| Canonical | Ubuntu Linux | 14.04 |
| Canonical | Ubuntu Linux | 16.04 |
| Canonical | Ubuntu Linux | 17.10 |
| Canonical | Ubuntu Linux | 18.04 |
| Netapp | Santricity Cloud Connector | All versions |
| Netapp | Storage Automation Store | All versions |
| Netapp | Storagegrid | All versions |
| Netapp | Clustered Data Ontap | All versions |
| Redhat | Enterprise Linux | 6.0 |
| Redhat | Enterprise Linux | 7.0 |
| Redhat | Enterprise Linux | 7.4 |
| Redhat | Enterprise Linux | 7.5 |
| Redhat | Enterprise Linux | 7.6 |
References
- http://www.openwall.com/lists/oss-security/2018/03/24/6Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/103525Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1040570Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2018:3558Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:0366Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:0367Third Party Advisory
- https://httpd.apache.org/security/vulnerabilities_24.htmlVendor Advisory
- https://security.netapp.com/advisory/ntap-20180601-0004/Third Party Advisory
- https://usn.ubuntu.com/3627-1/Third Party Advisory
- https://usn.ubuntu.com/3627-2/Third Party Advisory
- https://www.debian.org/security/2018/dsa-4164Third Party Advisory
- http://www.openwall.com/lists/oss-security/2018/03/24/6Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/103525Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1040570Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2018:3558Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:0366Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:0367Third Party Advisory
- https://httpd.apache.org/security/vulnerabilities_24.htmlVendor Advisory
- https://security.netapp.com/advisory/ntap-20180601-0004/Third Party Advisory
- https://usn.ubuntu.com/3627-1/Third Party Advisory
- https://usn.ubuntu.com/3627-2/Third Party Advisory
- https://www.debian.org/security/2018/dsa-4164Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-15715?
How severe is CVE-2017-15715?
How do I fix CVE-2017-15715?
Are you affected by CVE-2017-15715?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST