CVE-2022-22707

MEDIUM

Published Jan 6, 20224y ago · Modified Jun 17, 20261w ago

5.9 CVSS 3.1

Medium

Published Jan 6, 2022 4y ago

Last Modified Jun 17, 2026 1w ago

Description

In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

CVSS Details

Base Score

5.9

Exploitability

2.2

Impact

3.6

Vector string

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector Network

Attack Complexity High

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality None

Integrity None

Availability High

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 3

Vendor	Product	Version	Range
lighttpd	lighttpd	*	≥1.4.46 – ≤1.4.63
debian	debian_linux	10.0	any
debian	debian_linux	11.0	any

References 2

redmine.lighttpd.net https://redmine.lighttpd.net/issues/3134

ExploitVendor Advisory
debian.org https://www.debian.org/security/2022/dsa-5040

Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.