CVE-2018-8011

By specially crafting HTTP requests, the mod_md challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server. Fixed in Apache HTTP Server 2.4.34 (Affected 2.4.33).

Published : 2018-07-18 14:29 Updated : 2019-03-04 19:22

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Apache Http Server 2.4.33 cpe:/a:apache:http_server:2.4.33
Netapp Cloud Backup - cpe:/a:netapp:cloud_backup:-
  1. Netapp (1) Search CVE
    1. Cloud Backup (1) Search CVE
      1. -
  2. Apache (1) Search CVE
    1. Http Server (1) Search CVE
      1. 2.4.33

CWE

ID Name Description Links
CWE-476 NULL Pointer Dereference A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. CVE

History of changes

Date Event
2019-03-04 19:22
2018-09-27 10:29
2018-09-15 13:26
2018-08-05 01:29
2018-07-18 14:29

New CVE