Analysis Summary

CVE-2024-36265 CVSS:7.5

Apache Submarine Server Core could allow a remote attacker to bypass security restrictions, caused by improper authorization validation. By sending a specially crafted request, an attacker could exploit this vulnerability to perform unauthorized actions.

CVE-2024-36264 CVSS:7.5

Apache Submarine Commons Utils could allow a remote attacker to obtain sensitive information, caused by improper authentication validation. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

CVE-2024-36263 CVSS:6.5

Apache Submarine Server Core is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.

CVE-2024-36471 CVSS:4.9

Apache Allura could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the import function. By utilize DNS rebinding attack techniques, an attacker could exploit this vulnerability to to read from internal services, and use this information to launch further attacks against the affected system.

Impact

• Information Disclosure
• Security Bypass

Indicators of Compromise

CVE

• CVE-2024-36265
• CVE-2024-36264
• CVE-2024-36263
• CVE-2024-36471

Affected Vendors

Remediation

Upgrade to the latest version of Apache, available from the Apache Website.

Apache Submarine

Apache Allura