Login Sign Up

CVE-2024-40761

5.3 MEDIUM

📋 TL;DR

This vulnerability in Apache Answer uses weak MD5 hashing of user email addresses for Gravatar integration, potentially exposing email addresses through hash reversal attacks. It affects all Apache Answer installations through version 1.3.5. Attackers could deanonymize users by obtaining their email addresses from the MD5 hashes.

💻 Affected Systems

Products:
  • Apache Answer
Versions: through 1.3.5
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations using Gravatar integration are affected.

📦 What is this software?

Answer by Apache

View all CVEs affecting Answer →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Mass user email address exposure leading to targeted phishing, spam campaigns, or identity correlation across services.

🟠

Likely Case

Individual user email addresses could be discovered through hash reversal techniques, compromising user privacy.

🟢

If Mitigated

Limited to privacy impact with no system compromise or data modification.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires access to MD5 hashes and hash reversal capabilities.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.4.0

Vendor Advisory: https://lists.apache.org/thread/mmrhsfy16qwrw0pkv0p9kj40vy3sg08x

Restart Required: Yes

Instructions:

1. Backup your Apache Answer installation and database. 2. Download Apache Answer 1.4.0 from the official website. 3. Replace existing installation files with new version. 4. Restart the Apache Answer service.

🔧 Temporary Workarounds

Disable Gravatar Integration

all

Temporarily disable Gravatar functionality to prevent email hash exposure.

Edit configuration to disable Gravatar or modify code to skip Gravatar calls

🧯 If You Can't Patch

  • Implement network segmentation to limit access to Apache Answer instance
  • Monitor for unusual access patterns to user profile/Gravatar endpoints

🔍 How to Verify

Check if Vulnerable:

Check Apache Answer version in admin panel or configuration files. Versions 1.3.5 and earlier are vulnerable.

Check Version:

Check admin panel or examine version.txt in installation directory

Verify Fix Applied:

Verify version is 1.4.0 or later and check that Gravatar URLs now use SHA256 instead of MD5.

📡 Detection & Monitoring

Log Indicators:

  • Multiple requests to Gravatar endpoints with MD5 hashes
  • Unusual pattern of user profile access

Network Indicators:

  • External requests to Gravatar API with MD5 parameters

SIEM Query:

source="apache_answer" AND (uri="*gravatar*" OR user_agent="*gravatar*")

📊 Metadata

CVE ID: CVE-2024-40761
CVSS v3 Score: 5.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-326
Published: September 25, 2024
Last Updated: July 10, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-40761, you might also want to check these:

CVE-2021-42216 9.8

CVE-2021-42216 is a critical cryptographic vulnerability in AnonAddy email forwarding service that a...

Same vulnerability type (CWE-326)
CVE-2020-14517 9.8

CVE-2020-14517 is a critical vulnerability in CodeMeter's protocol encryption that can be easily bro...

Same vulnerability type (CWE-326)
CVE-2025-7398 9.1

Brocade ASCG versions before 3.3.0 use medium-strength cryptography algorithms on internal ports 900...

Same vulnerability type (CWE-326)