CVE-2024-24753
MEDIUMBref < 2.1.13 - Security Feature Bypass via API Gateway v2 Multiple Header Handling
Title source: llmDescription
Bref enable serverless PHP on AWS Lambda. When Bref is used in combination with an API Gateway with the v2 format, it does not handle multiple values headers. If PHP generates a response with two headers having the same key but different values only the latest one is kept. If an application relies on multiple headers with the same key being set for security reasons, then Bref would lower the application security. For example, if an application sets multiple `Content-Security-Policy` headers, then Bref would just reflect the latest one. This vulnerability is patched in 2.1.13.
References (2)
Core 2
Core References
Exploit, Vendor Advisory x_refsource_confirm
https://github.com/brefphp/bref/security/advisories/GHSA-99f9-gv72-fw9r
Patch x_refsource_misc
https://github.com/brefphp/bref/commit/f834027aaf88b3885f4aa8edf6944ae920daf2dc
Scores
CVSS v3
4.8
EPSS
0.0043
EPSS Percentile
33.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-436
Status
published
Products (2)
bref/bref
0 - 2.1.13Packagist
mnapoli/bref
< 2.1.13
Published
Feb 01, 2024
Tracked Since
Feb 18, 2026