Vulnerability Description
In lighttpd 1.4.65, mod_wstunnel does not initialize a handler function pointer if an invalid HTTP request (websocket handshake) is received. It leads to null pointer dereference which crashes the server. It could be used by an external attacker to cause denial of service condition.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lighttpd | Lighttpd | 1.4.65 |
| Debian | Debian Linux | 10.0 |
Related Weaknesses (CWE)
References
- https://lists.debian.org/debian-lts-announce/2022/10/msg00002.htmlMailing ListThird Party Advisory
- https://redmine.lighttpd.net/issues/3165ExploitIssue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202210-12Third Party Advisory
- https://www.debian.org/security/2022/dsa-5243Mailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2022/10/msg00002.htmlMailing ListThird Party Advisory
- https://redmine.lighttpd.net/issues/3165ExploitIssue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202210-12Third Party Advisory
- https://www.debian.org/security/2022/dsa-5243Mailing ListThird Party Advisory
FAQ
What is CVE-2022-37797?
CVE-2022-37797 is a vulnerability with a CVSS score of 7.5 (HIGH). In lighttpd 1.4.65, mod_wstunnel does not initialize a handler function pointer if an invalid HTTP request (websocket handshake) is received. It leads to null pointer dereference which crashes the ser...
How severe is CVE-2022-37797?
CVE-2022-37797 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-37797?
Check the references section above for vendor advisories and patch information. Affected products include: Lighttpd Lighttpd, Debian Debian Linux.