CVE-2024-43394
BaseFortify
Publication date: 2025-07-10
Last updated on: 2025-11-04
Assigner: Apache Software Foundation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apache | http_server | From 2.4.0 (inc) to 2.4.64 (exc) |
| microsoft | windows | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-918 | The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Server-Side Request Forgery (SSRF) in Apache HTTP Server on Windows. It allows an attacker to potentially leak NTLM hashes to a malicious server by exploiting mod_rewrite or apache expressions that pass unvalidated request input. Essentially, the server can be tricked into making unauthorized requests that expose sensitive authentication information.
How can this vulnerability impact me? :
The vulnerability can lead to the leakage of NTLM hashes to a malicious server, which could allow attackers to impersonate legitimate users or gain unauthorized access to systems. This can compromise the security of the affected Windows server and potentially lead to further attacks within the network.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, limit the hosts that your Windows Apache HTTP Server connects to over SMB, especially considering NTLM authentication. Avoid using mod_rewrite or apache expressions that pass unvalidated request input which could lead to SSRF via UNC paths. Administrators should be cautious about directing the server to open UNC paths and apply strict controls on SMB connections.