CVE-2017-7529

Published: Jul 13, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.

Vendor	Product	Versions
nginx	nginx	affected `0.5.6 - 1.13.2`

Weaknesses (CWE)

CWE-190

References

[nginx-announce] 20170711 nginx security advisory (CVE-2017-7529)

mailing-list

x_refsource_MLIST

RHSA-2017:2538

vendor-advisory

x_refsource_REDHAT

99534

vdb-entry

x_refsource_BID

1039238

vdb-entry

x_refsource_SECTRACK

https://puppet.com/security/cve/cve-2017-7529

x_refsource_CONFIRM

https://support.apple.com/kb/HT212818

x_refsource_CONFIRM

20210921 APPLE-SA-2021-09-20-4 Xcode 13

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-7529

Description

Affected Products

Weaknesses (CWE)

References