CVE-2021-36160

Опубликовано: 16 сент. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	released	2.4.48-3.1ubuntu2
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/focal	released	2.4.41-4ubuntu3.5
esm-infra/xenial	not-affected	code not present
focal	released	2.4.41-4ubuntu3.5
hirsute	released	2.4.46-4ubuntu1.2
impish	released	2.4.48-3.1ubuntu2
jammy	released	2.4.48-3.1ubuntu2

Показывать по

Ссылки на источники

EPSS

Процентиль: 89%

0.04962

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-36160

CVSS3: 7.5

redhat

около 4 лет назад

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).

CVE-2021-36160

CVSS3: 7.5

nvd

около 4 лет назад

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).

CVE-2021-36160

CVSS3: 7.5

msrc

около 4 лет назад

mod_proxy_uwsgi out of bound read

CVE-2021-36160

CVSS3: 7.5

debian

около 4 лет назад

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read ...

GHSA-f4wr-wvqf-r2q5

CVSS3: 7.5

github

больше 3 лет назад

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).

EPSS

Процентиль: 89%

0.04962

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2021-36160

Описание

Пакет apache2

Ссылки на источники

Связанные уязвимости