CVE-2021-26691

Опубликовано: 10 июн. 2021

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 7.5

CVSS3: 9.8

Описание

In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow

Релиз	Статус	Примечание
bionic	released	2.4.29-1ubuntu4.16
devel	released	2.4.46-4ubuntu2
esm-infra-legacy/trusty	not-affected	2.4.7-1ubuntu4.22+esm1
esm-infra/bionic	not-affected	2.4.29-1ubuntu4.16
esm-infra/focal	not-affected	2.4.41-4ubuntu3.3
esm-infra/xenial	released	2.4.18-2ubuntu3.17+esm1
focal	released	2.4.41-4ubuntu3.3
groovy	released	2.4.46-1ubuntu1.2
hirsute	released	2.4.46-4ubuntu1.1
impish	released	2.4.46-4ubuntu2

Показывать по

Ссылки на источники

EPSS

Процентиль: 97%

0.40933

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2021-26691

CVSS3: 8.1

redhat

около 4 лет назад

In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow

CVE-2021-26691

CVSS3: 9.8

nvd

около 4 лет назад

In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow

CVE-2021-26691

CVSS3: 9.8

msrc

почти 4 года назад

Описание отсутствует

CVE-2021-26691

CVSS3: 9.8

debian

около 4 лет назад

In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted Ses ...

GHSA-j3ww-p97m-gh9x

CVSS3: 9.8

github

около 3 лет назад

In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow

EPSS

Процентиль: 97%

0.40933

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2021-26691

Описание

Пакет apache2

Ссылки на источники

Связанные уязвимости