Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-29007— Apache CloudStack: When downloading templates or ISOs, the management server and SSVM follow HTTP redirects with potentially dangerous consequences

EPSS 0.14% · P33
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-29007

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Apache CloudStack: When downloading templates or ISOs, the management server and SSVM follow HTTP redirects with potentially dangerous consequences
Source: NVD (National Vulnerability Database)
Vulnerability Description
The CloudStack management server and secondary storage VM could be tricked into making requests to restricted or random resources by means of following 301 HTTP redirects presented by external servers when downloading templates or ISOs. Users are recommended to upgrade to version 4.18.1.1 or 4.19.0.1, which fixes this issue.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
服务端请求伪造(SSRF)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apache CloudStack 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apache CloudStack是美国阿帕奇(Apache)基金会的一套基础架构即服务(IaaS)云计算平台。该平台主要用于部署和管理大型虚拟机网络。 Apache CloudStack 4.18.1.1、4.19.0.1版本存在安全漏洞,该漏洞源于使用下载模板或 ISO 时遵循外部服务器提供的 301 HTTP 重定向,向受限或随机资源发出请求。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Apache Software FoundationApache CloudStack 4.9.1.0 ~ 4.18.1.0 -

II. Public POCs for CVE-2024-29007

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2024-29007

Please Login to view more intelligence information

Same Patch Batch · Apache Software Foundation · 2024-04-04 · 6 CVEs total

CVE-2024-29006Apache CloudStack: x-forwarded-for HTTP header parsed by default
CVE-2024-29008Apache CloudStack: The extraconfig feature can be abused to load hypervisor resources on a
CVE-2023-38709Apache HTTP Server: HTTP response splitting
CVE-2024-24795Apache HTTP Server: HTTP Response Splitting in multiple modules
CVE-2024-27316Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames

IV. Related Vulnerabilities

Same product: Apache CloudStack
Same vendor: Apache Software Foundation
Same weakness: CWE-918

V. Comments for CVE-2024-29007

No comments yet

Leave a comment