We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-7885

Undertow: improper state management in proxy protocol parsing causes information leakage



Assignerredhat
Reserved2024-08-16
Published2024-08-21
Updated2024-09-05

Description

A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.



HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Product status

Default status
0x4003501d20

Default status
0x4003501d80

Default status
0x4003501de0

Default status
0x4003501e40

Default status
0x4003501ea0

Default status
0x4003501f00

Default status
0x4003501f60

Default status
0x4003560040

Default status
0x40035600a0

Default status
0x4003560100

Default status
0x4003560160

Default status
0x40035601c0

Default status
0x4003560220

Timeline

2024-08-16:Reported to Red Hat.
2024-08-07:Made public.

Credits

Red Hat would like to thank BfC for reporting this issue.

References

https://access.redhat.com/security/cve/CVE-2024-7885 vdb-entry

https://bugzilla.redhat.com/show_bug.cgi?id=2305290 (RHBZ#2305290) issue-tracking

cve.org CVE-2024-7885

nvd.nist.gov CVE-2024-7885

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-7885
Subscribe to our newsletter to learn more about our work.