CVE-2024-7347 : NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module, which might allow an attacker to over-read NGINX worker memory resulting in its termination, using a specially crafted mp4 file. The issue only affects NGINX if it is built with the ngx_http_mp4_module and the mp4 directive is used in the configuration file. Additionally, the attack is possible only if an attacker can trigger the processing of a specially crafted mp4 file with the ngx_http_mp4_module. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Published 2024-08-14 14:32:34

Updated 2025-01-22 16:10:28

Source F5 Networks

View at NVD, CVE.org

Products affected by CVE-2024-7347

F5 » Nginx
Versions from including (>=) 1.5.13 and before (<) 1.26.2
cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx
Versions from including (>=) 1.27 and before (<) 1.27.1
cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus
Versions from including (>=) r27 and before (<) r31
cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus
Versions from including (>=) R32 and before (<) R32 P1
cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus
Versions from including (>=) R4 and before (<) R31 P3
cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus » Version: R31
cpe:2.3:a:f5:nginx_plus:r31:-:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus » Version: R31 Update P1
cpe:2.3:a:f5:nginx_plus:r31:p1:*:*:*:*:*:*
Matching versions
F5 » Nginx Plus » Version: R32
cpe:2.3:a:f5:nginx_plus:r32:-:*:*:*:*:*:*
Matching versions
F5 » Nginx Open Source
Versions from including (>=) 1.5.13 and before (<) 1.26.2
cpe:2.3:a:f5:nginx_open_source:*:*:*:*:*:*:*:*
Matching versions
F5 » Nginx Open Source » Version: 1.27.0
cpe:2.3:a:f5:nginx_open_source:1.27.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-7347

EPSS FAQ

0.10%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 29 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-7347

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.7	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H	N/A	N/A	F5 Networks	2024-08-14
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
4.7	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H	1.0	3.6	F5 Networks	2024-08-14
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
4.7	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H	1.0	3.6	NIST	2024-08-20
Attack Vector: Local Attack Complexity: High Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.7	MEDIUM	CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/V...	N/A	N/A	F5 Networks	2024-08-14
Attack Vector: Local Attack Complexity: High Attack Requirements: Present Privileges Required: Low User Interaction: None Confidentiality (VC): None Integrity (VI): None Availability (VA): High
5.7	MEDIUM	CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/V...	N/A	N/A	F5 Networks	2024-08-14
Attack Vector: Local Attack Complexity: High Attack Requirements: Present Privileges Required: Low User Interaction: None Confidentiality (VC): None Integrity (VI): None Availability (VA): High

CWE ids for CVE-2024-7347

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)
CWE-126 Buffer Over-read

The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.
Assigned by:
- 9dacffd4-cb11-413f-8451-fbbfd4ddc0ab (Primary)
- f5sirt@f5.com (Secondary)

References for CVE-2024-7347

http://www.openwall.com/lists/oss-security/2024/08/14/4

oss-security - CVE-2024-7347: nginx: ngx_http_mp4_module: Worker process crash by using a specially crafted mp4 file
Mailing List
https://my.f5.com/manage/s/article/K000140529

Article Detail
Vendor Advisory

Jump to

Vulnerability Details : CVE-2024-7347

Products affected by CVE-2024-7347

Exploit prediction scoring system (EPSS) score for CVE-2024-7347

CVSS scores for CVE-2024-7347

CWE ids for CVE-2024-7347

References for CVE-2024-7347