vendor:
Unknown
by:
Unknown
6.1
CVSS
MEDIUM
Newline Injection
20
CWE
Product Name: Unknown
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2019-10098
CPE: a:vendor:product_name
Metasploit:
https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-2-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/ibm-http_server-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp5-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp8-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp2-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp3-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/alma_linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/debian-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/apache-httpd-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/amazon_linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/oracle_linux-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/f5-big-ip-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-10082/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-10092/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-10098/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2019-10098/, https://www.rapid7.com/db/?q=CVE-2019-10098&type=&page=2, https://www.rapid7.com/db/?q=CVE-2019-10098&type=&page=2
Tags: cve,cve2019,redirect,apache,server
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Nuclei References:
https://www.exploit-db.com/exploits/47689, https://nvd.nist.gov/vuln/detail/CVE-2019-10098, https://www.openwall.com/lists/oss-security/2020/04/01/4, https://httpd.apache.org/security/vulnerabilities_24.html, https://www.oracle.com/security-alerts/cpuapr2021.html, https://www.oracle.com/security-alerts/cpuoct2019.html
Nuclei Metadata: {'max-request': 1, 'vendor': 'apache', 'product': 'http_server'}
Platforms Tested:
2019
Newline Injection in URL Redirection
The vulnerability allows an attacker to redirect URLs to a malicious website by injecting newlines in the URL. This can be achieved by using the %0a character, which represents a newline. By appending the malicious website after the newline character, the attacker can redirect users to the malicious site.
Mitigation:
To mitigate this vulnerability, it is recommended to validate and sanitize user input when constructing URLs for redirection. Additionally, URL encoding should be used to prevent newline injection attacks.