Description
undertow before versions 1.4.18.SP1, 2.0.2.Final, 1.4.24.Final was found vulnerable when using Digest authentication, the server does not ensure that the value of URI in the Authorization header matches the URI in HTTP request line. This allows the attacker to cause a MITM attack and access the desired content on the server.
References (9)
Core 9
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0479
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0481
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:2405
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:1525
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12196
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0480
Issue Tracking x_refsource_confirm
https://issues.jboss.org/browse/UNDERTOW-1190
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3768
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0478
Scores
CVSS v3
4.8
EPSS
0.0205
EPSS Percentile
78.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N
Details
CWE
CWE-287
CWE-863
Status
published
Products (7)
io.undertow/undertow-core
2.0.0.Alpha1 - 2.0.2.FInalMaven
redhat/jboss_enterprise_application_platform
7.0.0
redhat/jboss_fuse
6.0.0
redhat/undertow
1.4.24
redhat/undertow
2.0.2
redhat/undertow
< 1.4.18
redhat/virtualization
4.0
Published
Apr 18, 2018
Tracked Since
Feb 18, 2026