CVE-2023-31122

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-31122

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-31122.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-31122

Aliases

BIT-apache-2023-31122

Downstream

ALPINE-CVE-2023-31122

BELL-CVE-2023-31122

DEBIAN-CVE-2023-31122

DLA-3818-1

DSA-5662-1

OESA-2023-1790

OESA-2023-1802

OESA-2023-1804

OESA-2023-1805

OESA-2023-1806

RHSA-2024:1316

RHSA-2024:2278

RHSA-2024:3121

SUSE-SU-2023:4430-1

SUSE-SU-2023:4431-1

SUSE-SU-2023:4432-1

SUSE-SU-2023:4451-1

UBUNTU-CVE-2023-31122

USN-6506-1

USN-6510-1

openSUSE-SU-2024:13350-1

Related

Published

2023-10-23T07:15:11Z

Modified

2025-08-01T02:03:27Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.

References

Affected packages

Git / github.com/apache/httpd

Affected ranges

Type: GIT
Repo: https://github.com/apache/httpd
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

c3ad18b7ee32da93eabaae7b94541d3c32264340