CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
87.0%
USN-5942-1 fixed vulnerabilities in Apache HTTP Server. This update
provides the corresponding update for CVE-2023-25690 for Ubuntu 16.04 ESM.
Original advisory details:
Lars Krapf discovered that the Apache HTTP Server mod_proxy module
incorrectly handled certain configurations. A remote attacker could
possibly use this issue to perform an HTTP Request Smuggling attack.
(CVE-2023-25690)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 16.04 | noarch | apache2 | <Β 2.4.18-2ubuntu3.17+esm10 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2 | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-bin | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-bin-dbgsym | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-data | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-dbg | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-dbgsym | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-dev | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-dev-dbgsym | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |
Ubuntu | 16.04 | noarch | apache2-doc | <Β 2.4.18-2ubuntu3.17 | UNKNOWN |