Miggo Logo
Miggo Vulnerability Database
CVE-2024-4032

CVE-2024-4032:
The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6...

7.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2024-4032
GHSA ID
GHSA-mh6q-v4mp-2cc7
EPSS Score
0.6609%
CWE
CWE-697
Published
6/17/2024
Updated
8/30/2024
KEV Status
No
Technology
-

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stemmed from incorrect definitions of private and global IP address ranges within the ipaddress module. This affected the is_private and is_global properties of IPv4Address, IPv6Address, IPv4Network, and IPv6Network classes. The provided patches show modifications to the logic of these properties and updates to the underlying lists (_private_networks and _private_networks_exceptions in _IPv4Constants and _IPv6Constants) used to determine address status. Therefore, these properties were the vulnerable functions, as they would return incorrect results prior to the patch. The patch evidence points to the changed logic in these methods or the constants they rely upon.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** “ip***r*ss” mo*ul* *ont*in** in*orr**t in*orm*tion **out w**t**r **rt*in IPv* *n* IPv* ***r*ss*s w*r* **si*n*t** *s “*lo**lly r******l*” or “priv*t*”. T*is *****t** t** is_priv*t* *n* is_*lo**l prop*rti*s o* t** ip***r*ss.IPv****r*ss, ip***r*ss.I

Reasoning

T** vuln*r**ility st*mm** *rom in*orr**t ***initions o* priv*t* *n* *lo**l IP ***r*ss r*n**s wit*in t** `ip***r*ss` mo*ul*. T*is *****t** t** `is_priv*t*` *n* `is_*lo**l` prop*rti*s o* `IPv****r*ss`, `IPv****r*ss`, `IPv*N*twork`, *n* `IPv*N*twork` *l