Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
High

CVE-2021-40438

Disclosure Date: September 16, 2021 (last updated November 30, 2021)
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
4
1
Attacker Value
Unknown

CVE-2021-36160

Disclosure Date: September 16, 2021 (last updated November 08, 2023)
A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0