Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-44790

Опубликовано: 20 дек. 2021
Источник: ubuntu
Приоритет: medium
EPSS Высокий
CVSS2: 7.5
CVSS3: 9.8

Описание

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.

РелизСтатусПримечание
bionic

released

2.4.29-1ubuntu4.21
devel

released

2.4.52-1ubuntu1
esm-infra-legacy/trusty

not-affected

2.4.7-1ubuntu4.22+esm3
esm-infra/bionic

not-affected

2.4.29-1ubuntu4.21
esm-infra/focal

not-affected

2.4.41-4ubuntu3.9
esm-infra/xenial

released

2.4.18-2ubuntu3.17+esm4
focal

released

2.4.41-4ubuntu3.9
hirsute

released

2.4.46-4ubuntu1.5
impish

released

2.4.48-3.1ubuntu3.2
jammy

released

2.4.52-1ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%
0.85858
Высокий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-44790

CVSS3: 9.8
redhat
больше 3 лет назад

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.

nvd логотип

CVE-2021-44790

CVSS3: 9.8
nvd
больше 3 лет назад

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.

msrc логотип

CVE-2021-44790

CVSS3: 9.8
msrc
больше 3 лет назад

Описание отсутствует

debian логотип

CVE-2021-44790

CVSS3: 9.8
debian
больше 3 лет назад

A carefully crafted request body can cause a buffer overflow in the mo ...

rocky логотип

RLSA-2022:0258

rocky
больше 3 лет назад

Important: httpd:2.4 security update

EPSS

Процентиль: 99%
0.85858
Высокий

7.5 High

CVSS2

9.8 Critical

CVSS3