CVE-2018-16845 — MEDIUM (6.1)

Q: How severe is CVE-2018-16845?

CVE-2018-16845 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-16845?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Nginx, Debian Debian Linux, Canonical Ubuntu Linux, Opensuse Leap, Apple Xcode.

Vulnerability Description

nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
F5	Nginx	>= 1.0.7, <= 1.0.15
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	14.04
Opensuse	Leap	15.1
Apple	Xcode	< 13.0

Related Weaknesses (CWE)

CWE-835 CWE-400

References

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.htmlMailing ListThird Party Advisory
http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.htmlMailing ListPatchVendor Advisory
http://seclists.org/fulldisclosure/2021/Sep/36Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/105868Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1042039Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:3652Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3653Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3680Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3681Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845Issue TrackingThird Party Advisory
https://lists.debian.org/debian-lts-announce/2018/11/msg00010.htmlMailing ListThird Party Advisory
https://support.apple.com/kb/HT212818Third Party Advisory
https://usn.ubuntu.com/3812-1/PatchThird Party Advisory
https://www.debian.org/security/2018/dsa-4335Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2018-16845?

CVE-2018-16845 is a vulnerability with a CVSS score of 6.1 (MEDIUM). nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might re...

How severe is CVE-2018-16845?

CVE-2018-16845 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-16845?

Check the references section above for vendor advisories and patch information. Affected products include: F5 Nginx, Debian Debian Linux, Canonical Ubuntu Linux, Opensuse Leap, Apple Xcode.