Vulnerability CVE-2018-14642

Vulnerability Name:

CVE-2018-14642 (CCN-150085)

Assigned:

2018-09-18

Published:

2018-09-18

Updated:

2020-12-08

Summary:

An information leak vulnerability was found in Undertow. If all headers are not written out in the first write() call then the code that handles flushing the buffer will always write out the full contents of the writevBuffer buffer, which may contain data from previous requests.

CVSS v3 Severity:

5.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-200
CWE-200

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2018-14642

Source: CCN
Type: Undertow Web site
Undertow · JBoss Community

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:0362

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:0364

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:0365

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:0380

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:1106

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:1107

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:1108

Source: REDHAT
Type: Vendor Advisory
RHSA-2019:1140

Source: CCN
Type: Red Hat Bugzilla Bug 1628702
(CVE-2018-14642) CVE-2018-14642 undertow: Infoleak in some circumstances where Undertow can serve data from a random buffer

Source: CONFIRM
Type: Issue Tracking, Patch, Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14642

Source: XF
Type: UNKNOWN
undertow-cve201814642-info-disc(150085)

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-14642

Vulnerable Configuration:

Configuration 1:

cpe:/a:redhat:undertow:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:redhat:jboss_enterprise_application_platform:7.1:*:*:*:*:*:*:*

OR cpe:/a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:*

OR cpe:/a:redhat:jboss_enterprise_application_platform:7.3:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.bionic:def:201814642000	V	CVE-2018-14642 on Ubuntu 18.04 LTS (bionic) - medium.	2018-09-18
oval:com.ubuntu.bionic:def:2018146420000000	V	CVE-2018-14642 on Ubuntu 18.04 LTS (bionic) - medium.	2018-09-18
oval:com.ubuntu.cosmic:def:201814642000	V	CVE-2018-14642 on Ubuntu 18.10 (cosmic) - medium.	2018-09-18
oval:com.ubuntu.xenial:def:2018146420000000	V	CVE-2018-14642 on Ubuntu 16.04 LTS (xenial) - medium.	2018-09-18
oval:com.ubuntu.xenial:def:201814642000	V	CVE-2018-14642 on Ubuntu 16.04 LTS (xenial) - medium.	2018-09-18
oval:com.ubuntu.disco:def:2018146420000000	V	CVE-2018-14642 on Ubuntu 19.04 (disco) - medium.	2018-09-18
oval:com.ubuntu.cosmic:def:2018146420000000	V	CVE-2018-14642 on Ubuntu 18.10 (cosmic) - medium.	2018-09-18

BACK