Description

The web application is using a caching system. The cache system is configured to cache responses with a error-related status code (400, 404, 501). An attacker can send a malformed request to an existing javascript file of the web application, so the application returns a response with such a status code and the cache system stores it. Therefore, if other users try to access the file, they will get the response with the error status from the caching system.

Remediation

It's recommended to avoid caching responses with error-related status codes. Consult web references for more information

References

CPDoS: Cache Poisoned Denial of Service

Responsible denial of service with web cache poisoning

Related Vulnerabilities

Vulnerable project dependencies

Cisco Adaptive Security Appliance (ASA) Path Traversal (CVE-2018-0296)

SAP NetWeaver Java AS WD_CHAT information disclosure vulnerability

SAP NetWeaver server info information disclosure BCB

XML External Entity Injection via external file

Severity

Medium

Classification

CWE-400 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Tags

Denial Of Service Configuration