CVE-2017-12425

Published Aug 4, 2017

Last updated 2 years ago

CVSS high 7.5

Overview

Description: An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the varnishd worker process to abort and restart, losing the cached contents in the process. An attacker can therefore crash the varnishd worker process on demand and effectively keep it from serving content - a Denial-of-Service attack. The specific source-code filename containing the incorrect statement varies across releases.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-190

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.0.2:rc-1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABCFB5A3-F97D-4C62-9324-30B5C6B737A9"
          },
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.0.3:rc-1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93E1B7BD-3071-46AF-9470-BB6FB9F29A6C"
          },
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.0.3:rc-2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7D22D35-0EBB-4B15-B343-1BFE0E8F1491"
          },
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.0.3:rc-2-proper:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "347CC238-B8C6-4A4A-9994-1A79FD48965F"
          },
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.0.3:rc-3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4139146-80E5-409F-8746-E1766F18F26C"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "791C39CC-4641-4560-96CF-B919B856F8ED"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:4.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD46E760-9422-4DBD-A2A1-5A0B81D6A579"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:4.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24B533AC-733A-44C1-B43D-349A22AF0C40"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:4.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EE32E00-E8AD-4DCB-8EBC-B744E30E7C34"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:varnish-cache:varnish:4.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8410C957-DCFF-4695-ABDB-A567661543BB"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECA866DC-4D72-40F4-88DD-388EC098AAE5"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.0:technology_preview1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50361AF7-7F0D-42E0-8B0B-D896A307504A"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6719C47D-51F1-403D-A21A-5DF3AF9208EC"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.1:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88E88E88-8B1D-4F4C-99E1-785A6F1A318C"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.1:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D62B8D4C-49AA-41C0-A4AB-141E0715048D"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C750BB32-7A70-4457-9DA5-E170BC1519A4"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.2:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "379B6419-098E-4426-BC21-A5E2C5702497"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.2:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E97F4BA3-D045-4015-8374-D3E5A3BE55ED"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A680B064-4AC8-4787-A9F9-EA438312BC1F"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.3:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "057BB869-6C8D-4A11-AFD7-DFEA82B269FB"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.3:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1EEDC15-4C82-4BE3-BF90-EFF62A40B21E"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C3875CE-E365-4D48-856A-DF15C185CC33"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.4:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6F13B2C-A678-4179-AA21-5AA8EC6F7058"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.4:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11740572-89AB-458D-939D-325B6F64B5F3"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.4:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01C7216D-5EC7-42C2-9761-A641EC26AD3E"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32267919-FA63-4495-9D6A-C2339266CB23"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.5:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB9CE595-A13A-4256-A537-AD324A53CD84"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.5:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30DC86C5-93F6-4F8E-B43D-FB699ED7E78D"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0ACE623F-E5A0-4983-ADCA-407FED2DD0F6"
          },
          {
            "criteria": "cpe:2.3:a:varnish-software:varnish_cache:4.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE5F216A-7F1E-4E56-A5CA-563A7F7BDD93"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8171E888-A6FA-41E8-89AC-01AD6FFEB82F"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:5.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF0CEE96-C295-4E33-8957-664AF93712BD"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF5726EF-CEB3-48C3-8A70-8B677C584F5D"
          },
          {
            "criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:5.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F9170FD-AD29-4824-BDDE-B98BD9F44E2D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References