Количество 16
Количество 16
GHSA-92ww-hwmg-qq7p
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVE-2021-44224
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVE-2021-44224
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVE-2021-44224
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVE-2021-44224
Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier
CVE-2021-44224
A crafted URI sent to httpd configured as a forward proxy (ProxyReques ...
BDU:2021-06393
Уязвимость HTTP-сервера Apache, связанная с подделкой запросов на стороне сервера, позволяющая нарушителю провести SSRF-атаку
openSUSE-SU-2022:0091-1
Security update for apache2
SUSE-SU-2022:0440-1
Security update for apache2
SUSE-SU-2022:0119-1
Security update for apache2
SUSE-SU-2022:0091-2
Security update for apache2
SUSE-SU-2022:0091-1
Security update for apache2
SUSE-SU-2022:0065-1
Security update for apache2
ROS-20211223-04
Множественные уязвимости HTTP-сервера Apache
RLSA-2022:1915
Moderate: httpd:2.4 security and bug fix update
ELSA-2022-1915
ELSA-2022-1915: httpd:2.4 security and bug fix update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-92ww-hwmg-qq7p A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included). | CVSS3: 8.2 | 11% Средний | почти 4 года назад |
 | CVE-2021-44224 A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included). | CVSS3: 8.2 | 11% Средний | почти 4 года назад |
 | CVE-2021-44224 A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included). | CVSS3: 7.1 | 11% Средний | почти 4 года назад |
 | CVE-2021-44224 A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included). | CVSS3: 8.2 | 11% Средний | почти 4 года назад |
 | CVE-2021-44224 Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier | CVSS3: 8.2 | 11% Средний | почти 4 года назад |
| CVE-2021-44224 A crafted URI sent to httpd configured as a forward proxy (ProxyReques ... | CVSS3: 8.2 | 11% Средний | почти 4 года назад |
 | BDU:2021-06393 Уязвимость HTTP-сервера Apache, связанная с подделкой запросов на стороне сервера, позволяющая нарушителю провести SSRF-атаку | CVSS3: 7.2 | 11% Средний | почти 4 года назад |
 | openSUSE-SU-2022:0091-1 Security update for apache2 | почти 4 года назад | ||
| SUSE-SU-2022:0440-1 Security update for apache2 | почти 4 года назад | ||
| SUSE-SU-2022:0119-1 Security update for apache2 | почти 4 года назад | ||
| SUSE-SU-2022:0091-2 Security update for apache2 | почти 4 года назад | ||
| SUSE-SU-2022:0091-1 Security update for apache2 | почти 4 года назад | ||
| SUSE-SU-2022:0065-1 Security update for apache2 | почти 4 года назад | ||
 | ROS-20211223-04 Множественные уязвимости HTTP-сервера Apache | почти 4 года назад | ||
 | RLSA-2022:1915 Moderate: httpd:2.4 security and bug fix update | больше 3 лет назад | ||
| ELSA-2022-1915 ELSA-2022-1915: httpd:2.4 security and bug fix update (MODERATE) | больше 3 лет назад |
Уязвимостей на страницу