Vulnerability CVE-2020-11078

Vulnerability Name:

CVE-2020-11078 (CCN-182249)

Assigned:

2020-05-20

Published:

2020-05-20

Updated:

2020-08-19

Summary:

In httplib2 before version 0.18.0, an attacker controlling unescaped part of uri for `httplib2.Http.request()` could change request headers and body, send additional hidden requests to same server. This vulnerability impacts software that uses httplib2 with uri constructed by string concatenation, as opposed to proper urllib building with escaping. This has been fixed in 0.18.0.

CVSS v3 Severity:

6.8 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N)
5.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
6.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

6.8 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N)
5.9 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-93
CWE-113

Vulnerability Consequences:

Data Manipulation

References:

Source: MITRE
Type: CNA
CVE-2020-11078

Source: XF
Type: UNKNOWN
httplib2-cve202011078-crlf-injection(182249)

Source: CCN
Type: httplib2 GIT Repository
CWE-93 CRLF injection in httplib2

Source: CCN
Type: Ubuntu CVE Tracker
CVE-2020-11078

Source: CCN
Type: Mend Vulnerability Database
CVE-2020-11078

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::highavailability:*:*:*:*:*

Configuration RedHat 3:

cpe:/a:redhat:enterprise_linux:8::resilientstorage:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 8:

cpe:/a:redhat:rhel_extras_sap:7:*:*:*:*:*:*:*

Configuration RedHat 9:

cpe:/a:redhat:rhel_extras_sap_hana:7:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:httplib2_project:httplib2:0.17.0:*:*:*:*:*:*:*

AND

cpe:/o:canonical:ubuntu:16.04::~~lts~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:18.04::~~lts~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:12.04::~~esm~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:14.04::~~esm~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:20.04::~~lts~~~:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:20.10:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7525	P	gzip-1.10-150200.10.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7467	P	cosign-1.12.0-150400.3.6.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7774	P	python3-httplib2-0.19.0-3.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:707	P	Security update for the Linux Kernel (Important)	2022-08-23
oval:org.opensuse.security:def:95254	P	Security update for curl (Important)	2022-07-06
oval:org.opensuse.security:def:3422	P	SuSEfirewall2-3.6.312.333-3.13.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3608	P	libimobiledevice6-1.2.0-7.31 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3171	P	libexiv2-12-0.23-12.5.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94801	P	python3-httplib2-0.19.0-3.3.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94534	P	cyrus-sasl-saslauthd-2.1.27-150300.4.6.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:6025	P	Security update for mutt (Moderate)	2022-04-29
oval:org.opensuse.security:def:101967	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2022-04-15
oval:org.opensuse.security:def:113267	P	python36-httplib2-0.19.1-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:106679	P	python36-httplib2-0.19.1-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:97005	P	gnuplot-5.2.2-3.3.29 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:101247	P	apache-commons-compress-1.19-1.63 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:111555	P	Security update for python-httplib2 (Moderate)	2021-07-11
oval:org.opensuse.security:def:20823	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:67114	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:75863	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:109227	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:64511	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:117428	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:102561	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:81078	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:68512	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:76182	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:7423	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:1466	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:64697	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:73633	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:118312	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:107913	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:84147	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:68556	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:95848	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:66795	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:73819	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:5706	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:101438	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:108633	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:84605	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:49294	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:88122	P	Security update for python-httplib2 (Moderate)	2021-05-27
oval:org.opensuse.security:def:88435	P	Security update for python-httplib2 (Moderate)	2021-05-27
oval:org.opensuse.security:def:96488	P	Security update for python-httplib2 (Moderate)	2021-05-26
oval:org.opensuse.security:def:11221	P	Security update for python-httplib2 (Moderate)	2021-05-26
oval:org.opensuse.security:def:109835	P	Security update for python-httplib2 (Moderate)	2021-05-26
oval:org.opensuse.security:def:103178	P	Security update for python-httplib2 (Moderate)	2021-05-26
oval:org.opensuse.security:def:111400	P	Security update for python-httplib2 (Moderate)	2021-05-23
oval:org.opensuse.security:def:45252	P	Security update for python-httplib2 (Moderate)	2021-05-19
oval:org.opensuse.security:def:40822	P	Security update for python-httplib2 (Moderate)	2021-05-19
oval:org.opensuse.security:def:96953	P	Security update for python-httplib2 (Moderate)	2021-05-19
oval:org.opensuse.security:def:68614	P	Security update for python-httplib2 (Moderate)	2021-05-19
oval:com.redhat.rhsa:def:20205003	P	RHSA-2020:5003: fence-agents security and bug fix update (Low)	2020-11-10
oval:com.redhat.rhsa:def:20205004	P	RHSA-2020:5004: resource-agents security and bug fix update (Low)	2020-11-10
oval:com.redhat.rhsa:def:20204605	P	RHSA-2020:4605: resource-agents security and bug fix update (Low)	2020-11-04

BACK