← back
CVE-2019-0211

CVE-2019-0211

CVSS 7.8 HIGHEPSS 65.0%● KEVCWE-416
In short

A vulnerability in Apache HTTP Server allows scripts running with limited permissions to gain full control by manipulating internal memory structures, potentially compromising the entire server. This only affects Unix-based systems.

Technical detail

CVE-2019-0211 is a privilege escalation vulnerability in Apache HTTP Server 2.4.17–2.4.38 using MPM event, worker, or prefork. Unprivileged child processes or in-process scripts can manipulate the scoreboard structure to achieve arbitrary code execution with parent process privileges (typically root). Unix systems are affected; Windows and non-Unix platforms are not.

Summary generated and translated by AI from the official description.
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Apache · Apache HTTP Server
public PoCs found7
githubgithub.com/ozkanbilge/Apache-Exploit-201911githubgithub.com/Jeanback1/CVE-2019-0211-exploit0cve_referencepacketstormsecurity.com/files/152441/CARPE-DIEM-Apache-2.4.x-Local-Privilege-Escalation.htmlunverifiedcve_referencepacketstormsecurity.com/files/152386/Apache-2.4.38-Root-Privilege-Escalation.htmlunverifiedexploitdbwww.exploit-db.com/exploits/46676unverifiedcve_referencewww.exploit-db.com/exploits/46676/unverifiedcve_referencepacketstormsecurity.com/files/152415/Slackware-Security-Advisory-httpd-Updates.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.htmlhttp://packetstormsecurity.com/files/152386/Apache-2.4.38-Root-Privilege-Escalation.htmlhttp://packetstormsecurity.com/files/152415/Slackware-Security-Advisory-httpd-Updates.htmlhttp://packetstormsecurity.com/files/152441/CARPE-DIEM-Apache-2.4.x-Local-Privilege-Escalation.htmlhttps://access.redhat.com/errata/RHBA-2019:0959https://access.redhat.com/errata/RHSA-2019:0746https://access.redhat.com/errata/RHSA-2019:0980https://access.redhat.com/errata/RHSA-2019:1296https://access.redhat.com/errata/RHSA-2019:1297https://access.redhat.com/errata/RHSA-2019:1543