#VU72750 Inefficient Algorithmic Complexity in http-cache-semantics


Published: 2023-03-03

Vulnerability identifier: #VU72750

Vulnerability risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-25881

CWE-ID: CWE-407

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
http-cache-semantics
Other software / Other software solutions

Vendor: kornelski

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to regular expression denial of service that occurs when the server reads the cache policy from the request using this library. A remote unauthenticated attacker can send malicious request header values to the server and perform a denial of service attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

http-cache-semantics: 3.2.0 - 4.1.0

External links
http://security.snyk.io/vuln/SNYK-JS-HTTPCACHESEMANTICS-3248783
http://github.com/kornelski/http-cache-semantics/blob/master/index.js%23L83
http://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-3253332

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Analyst Workflow
Inefficient algorithmic complexity in IBM Cloud Pak System
Multiple vulnerabilities in IBM Netcool Operations Insight
Red Hat Enterprise Linux 9.0 Extended Update Support update for nodejs
Multiple vulnerabilities in IBM Spectrum Control
Multiple vulnerabilities in IBM QRadar Data Synchronization App
Multiple vulnerabilities in IBM Operational Decision Manager
Multiple vulnerabilities in IBM Storage Fusion and IBM Storage Fusion HCI
Splunk Enterprise update for third-party packages
openEuler update for nodejs