CVE-2022-28615
Read beyond bounds in ap_strcmp_match()Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected.
We have discovered 1,834,229 live websites that are affected by CVE-2022-28615.
Affected Software
| Product |  Apache |
| Category | Web Servers |
| Vulnerable Domains | 1,834,229 live websites (58.14% of Apache install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 134 versions ( 91.16% of all versions) |
Common Weakness Enumeration
CWE-190 Integer Overflow or WraparoundDetails
- Published - Jun 8, 2022
- Updated - Aug 3, 2024
Credits
- The Apache HTTP Server project would like to thank Ronald Crane (Zippenhop LLC) for reporting this issue
CWE
CVE References
CWE References
CVE-2022-28615 usage by Country
 United States | 575,033 websites |
 Germany | 209,422 websites |
 Taiwan | 112,356 websites |
 France | 105,328 websites |
 Japan | 76,822 websites |
 Russia | 68,551 websites |
 Netherlands | 58,614 websites |
 Singapore | 50,244 websites |
 Czech Republic | 46,232 websites |
 Italy | 42,349 websites |
CVE-2022-28615 usage by TLD
| .com | 720,286 websites |
| .de | 131,002 websites |
| .org | 81,167 websites |
| .net | 74,674 websites |
| .ru | 59,938 websites |
| .nl | 43,732 websites |
| .it | 41,648 websites |
| .cz | 38,510 websites |
| .fr | 31,216 websites |
| .jp | 30,946 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2022-28615
Top websites that are affected by CVE-2022-28615. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *******.com | Singapore | *** | |
| *************.***.****.****.************.net | United States | *** | |
| *****.***********.com |  Canada | *** | |
| *********.com | United States | *** | |
| *********.*************.se | United States | *** | |
| ***********.org | United States | *** | |
| *********.net | United States | *** | |
| ********.*********.com | Singapore | *,*** | |
| ***.****.us | United States | *,*** | |
| ***.*********.com | Singapore | *,*** |
FAQ
CVE-2022-28615 is Integer Overflow or Wraparound in Apache
A total of 1,834,229 websites have been identified as vulnerable to CVE-2022-28615, discovered through global website indexing conducted by WebTechSurvey.
Apache is susceptible to CVE-2022-28615 vulnerability.
Apache versions before 2.4.53 are vulnerable to CVE-2022-28615.
Version 2.4.53 of Apache addresses the CVE-2022-28615 security vulnerability.
References
- https://httpd.apache.org/security/vulnerabilities_24.html
- http://www.openwall.com/lists/oss-security/2022/06/08/9
- https://security.netapp.com/advisory/ntap-20220624-0005/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPY2BLEVJWFH34AX77ZJPLD2OOBYR6ND/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7QUGG2QZWHTITMABFLVXA4DNYUOTPWYQ/
- https://security.gentoo.org/glsa/202208-20