In Eclipse Vert.x version 3.0 to 3.5.1, the HttpServer response headers and HttpClient request headers do not filter carriage return and line feed characters from the header value. This allow unfiltered values to inject a new header in the client request or server response.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2018-12537 from the MITRE CVE dictionary dictionary and NIST NVD.
While the affected artifact is being shipped in Fuse 6.3 via camel-vertx component, the vulnerable code is not being used, therefore Fuse 6.3 is not affected.
| CVSS3 Base Score | 5.3 |
|---|---|
| CVSS3 Base Metrics | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
| Attack Vector | Network |
| Attack Complexity | Low |
| Privileges Required | None |
| User Interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity Impact | Low |
| Availability Impact | None |
| Platform | Errata | Release Date |
|---|---|---|
| Red Hat OpenShift Application Runtimes 1.0 | RHSA-2018:2371 | 2018-08-09 |
| Red Hat JBoss Fuse 7 | RHSA-2018:3768 | 2018-12-04 |
| Platform | Package | State |
|---|---|---|
| Red Hat JBoss Fuse 6 | vertx | Not affected |
Vulmon