CVE-2018-20578
First published: Fri Dec 28 2018(Updated: )
An issue was discovered in NuttX before 7.27. The function netlib_parsehttpurl() in apps/netutils/netlib/netlib_parsehttpurl.c mishandles URLs longer than hostlen bytes (in the webclient, this is set by default to 40), leading to an Infinite Loop. The attack vector is the Location header of an HTTP 3xx response.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache NuttX | <7.27 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-20578?
CVE-2018-20578 is classified as a Denial of Service (DoS) vulnerability due to its infinite loop condition.
How do I fix CVE-2018-20578?
To mitigate CVE-2018-20578, upgrade NuttX to version 7.27 or later that implements a fix for this issue.
What can an attacker exploit in CVE-2018-20578?
An attacker can exploit CVE-2018-20578 by sending a specially crafted Location header in an HTTP request, which leads to an infinite loop.
What versions of NuttX are affected by CVE-2018-20578?
CVE-2018-20578 affects NuttX versions prior to 7.27.
Is there any workaround for CVE-2018-20578?
While upgrading is the best solution for CVE-2018-20578, limiting input size for URL handling could serve as a temporary mitigation.
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/remedy
- agent/author
- agent/severity
- agent/weakness
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/nuttx
- canonical/apache nuttx