1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Apache HTTP Server Privilege Escalation Vulnerability

Known Exploited Vulnerabilities CVE-2019-0211 Mappings

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2019-0211 Apache HTTP Server Privilege Escalation Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
CVE-2019-0211 is a privilege escalation vulnerability in Apache HTTP Server with MPM event, worker, or prefork that allows an attacker to execute code with the privileges of that parent process (usually root).
References
  1. https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html
  2. https://ubuntu.com/security/CVE-2019-0211