Description

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.

Remediation

References

CVE-2017-7529

Related Vulnerabilities

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-0270)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1460)

Oracle JRE CVE-2018-2796 Vulnerability (CVE-2018-2796)

WordPress Plugin About Author Box Cross-Site Scripting (1.0.1)

WordPress Plugin Simple Popup Newsletter Cross-Site Scripting (1.4.7)

Severity

High

Classification

CVE-2017-7529 CWE-190 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities