Lucene search

K
cvelistApacheCVELIST:CVE-2022-30522
HistoryJun 08, 2022 - 10:00 a.m.

CVE-2022-30522 mod_sed denial of service

2022-06-0810:00:54
CWE-789
apache
www.cve.org
2
apache
http server
mod_sed
dos
cve-2022-30522
memory allocations
transformations

AI Score

8.8

Confidence

High

EPSS

0.348

Percentile

97.1%

If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort.

CNA Affected

[
  {
    "product": "Apache HTTP Server",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "2.4.53"
      }
    ]
  }
]