CVE-2013-4547

nginx <1.5.7 - Auth Bypass

Title source: llm

Description

nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.

Exploits (3)

exploitdb WRITEUP VERIFIED

by Ivan Fratric · textremotemultiple

https://www.exploit-db.com/exploits/38846

View Code ZIP pw:eip

nomisec WORKING POC 3 stars

by cyberharsh · poc

https://github.com/cyberharsh/Nginx-CVE-2013-4547

View Code ZIP pw:eip

nomisec WRITEUP

by rsp243 · poc

https://github.com/rsp243/fix_nginx_CVE-2013-4547_IB

View Code ZIP pw:eip

References (9)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00007.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2013-11/msg00084.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2013-11/msg00118.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2013-11/msg00119.html

[Mitigation, Vendor Advisory] http://mailman.nginx.org/pipermail/nginx-announce/2013/000125.html

[Third Party Advisory] http://secunia.com/advisories/55757

[Third Party Advisory] http://secunia.com/advisories/55822

[Third Party Advisory] http://secunia.com/advisories/55825

[Broken Link] http://www.debian.org/security/2012/dsa-2802

Scores

EPSS 0.9092

EPSS Percentile 99.6%

Details

CWE

CWE-116

Status published

Products (8)

f5/nginx 0.8.41 - 1.4.4

opensuse/opensuse 11.4

opensuse/opensuse 12.2

opensuse/opensuse 12.3

opensuse/opensuse 13.1

suse/lifecycle_management_server 1.3

suse/studio_onsite 1.3

suse/webyast 1.3

Published Nov 23, 2013

Tracked Since Feb 18, 2026