cbcvebase.
CVE-2017-8807
published 2017-11-16

CVE-2017-8807: vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache 4.1.x before 4.1.9 and 5.x before 5.2.1 allows remote attackers to obtain sensitive…

PriorityP347critical9.1CVSS 3.1
AVNACLPRNUINSUCHINAH
EPSS
4.08%
89.4th percentile
vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache 4.1.x before 4.1.9 and 5.x before 5.2.1 allows remote attackers to obtain sensitive information from process memory because a VFP_GetStorage buffer is larger than intended in certain circumstances involving -sfile Stevedore transient objects.

Affected

8 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debianvarnish< varnish 5.2.1-1 (bookworm)varnish 5.2.1-1 (bookworm)
varnish-cachevarnish>= 0 < 5.2.1-15.2.1-1
varnish-cachevarnish>= 0 < 5.2.1-15.2.1-1
varnish-cachevarnish>= 0 < 5.2.1-15.2.1-1
varnish-cachevarnish>= 0 < 5.2.1-15.2.1-1
varnish-cachevarnish>= 4.1.0 < 4.1.94.1.9
varnish_cache_projectvarnish_cache>= 5.0.0 < 5.2.15.2.1

CVSS provenance

nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:P
osv9.1CRITICAL
vendor_debian9.1CRITICAL
vendor_redhat9.1CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.