CVE-2020-11985

CWE-3459 documents8 sources
Severity
5.3MEDIUM
EPSS
15.3%
top 5.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedAug 7
Latest updateMay 24

Description

IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules, an attacker could spoof their IP address for logging and PHP scripts. Note this issue was fixed in Apache HTTP Server 2.4.24 but was retrospectively allocated a low severity CVE in 2020.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages3 packages

NVDapache/http_server2.4.12.4.23
CVEListV5apache_http_server2.4.1 to 2.4.23
Debianapache2< 2.4.25-1+3

🔴Vulnerability Details

3
GHSA
GHSA-39vm-h38v-j867: IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules2022-05-24
OSV
CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules2020-08-07
CVEList
CVE-2020-11985: IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules2020-08-07

📋Vendor Advisories

3
Red Hat
httpd: IP address spoofing when proxying using mod_remoteip and mod_rewrite2020-08-07
Debian
CVE-2020-11985: apache2 - IP address spoofing when proxying using mod_remoteip and mod_rewrite For configu...2020
Apache
Apache httpd: CVE-2020-11985

💬Community

2
Bugzilla
CVE-2020-11985 httpd: IP address spoofing when proxying using mod_remoteip and mod_rewrite [fedora-all]2020-08-11
Bugzilla
CVE-2020-11985 httpd: IP address spoofing when proxying using mod_remoteip and mod_rewrite2020-08-05
CVE-2020-11985 (MEDIUM CVSS 5.3) | IP address spoofing when proxying u | cvebase.io