CVE Vulnerability

CVE-2022-37797

In lighttpd 1.4.65, mod_wstunnel does not initialize a handler function pointer if an invalid HTTP request (websocket handshake) is received. It leads to null pointer dereference which crashes the server. It could be used by an external attacker to cause denial of service condition.

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://redmine.lighttpd.net/issues/3165 Exploit Issue Tracking
https://www.debian.org/security/2022/dsa-5243 Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/10/msg00002.html Mailing List Third Party Advisory
https://security.gentoo.org/glsa/202210-12 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:lighttpd:lighttpd:1.4.65:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Information

Published : 2022-09-12 03:15

Updated : 2022-12-03 01:11

NVD link : CVE-2022-37797

Mitre link : CVE-2022-37797

Products Affected
No products.
CWE
CWE-476