logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-44224

Description

A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).


Affected Software


CPE Name Name Version
apache:http_server apache http server 2.4.52
fedoraproject:fedora fedoraproject fedora 34
fedoraproject:fedora fedoraproject fedora 35
fedoraproject:fedora fedoraproject fedora 36
debian:debian_linux debian debian linux 10.0
debian:debian_linux debian debian linux 11.0
tenable:tenable.sc tenable tenable.sc 5.20.0
tenable:tenable.sc tenable tenable.sc 202201.1
oracle:http_server oracle http server 12.2.1.3.0
oracle:communications_operations_monitor oracle communications operations monitor 4.0
oracle:instantis_enterprisetrack oracle instantis enterprisetrack 17.1
oracle:instantis_enterprisetrack oracle instantis enterprisetrack 17.2
oracle:instantis_enterprisetrack oracle instantis enterprisetrack 17.3
oracle:http_server oracle http server -
oracle:http_server oracle http server 12.2.1.4.0
oracle:communications_operations_monitor oracle communications operations monitor 4.3
oracle:communications_operations_monitor oracle communications operations monitor 4.4
oracle:communications_element_manager oracle communications element manager 9.0
oracle:communications_operations_monitor oracle communications operations monitor 5.0
oracle:communications_session_report_manager oracle communications session report manager 9.0
oracle:communications_session_route_manager oracle communications session route manager 9.0
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 12.4
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 10.15.7
apple:macos apple macos 11.6.6

Related