BSA-2017-361
21370
20 September 2018
25 August 2017
Closed
High
7.4
N/A
CVE-2017-3167
Summary
Security Advisory ID : BSA-2017-361
Component : Apache HTTPD
Revision : 2.0: Final
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed.
Affected ProductsNo Brocade Fibre Channel technology products from Broadcom are currently known to be affected by this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | August 25, 2017 |
2.0 | Updated to reflect Fiber Channel Only | September 20, 2018 |