K72382141: Apache HTTPD vulnerability CVE-2021-34798

🗓️ 21 Feb 2023 18:34:05Reported by f5Type

f5🔗 my.f5.com👁 140 Views

Malformed requests causing Apache HTTPD vulnerabilit

Reporter	Title	Published	Views	Family All 218
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 9.0.1	16 Nov 202315:21	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2021-39275, CVE-2021-40438, CVE-2021-34798)	8 Nov 202104:06	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache HTTP (CVE-2021-34798 and CVE-2021-39275) affects Power HMC	30 May 202211:54	–	ibm
IBM Security Bulletins	Security Bulletin: Apache HTTP Server as used by IBM QRadar SIEM is vulnerable to buffer overflow and denial of service (CVE-2021-44790, CVE-2021-34798, CVE-2021-39275)	28 Feb 202217:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security SiteProtector System is affected by Apache HTTP Server vulnerabilities (CVE-2021-40438, CVE-2021-34798)	15 Apr 202204:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Aspera Orchestrator was vulnerable to denial of service due to an Apache HTTP Server vulnerability (CVE-2021-34798)	2 Feb 202317:40	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Network Manager IP Edition (CVE-2021-40438, CVE-2021-34798)	18 Oct 202106:25	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by WebSphere Application Server	11 Nov 202119:48	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with WebSphere Remote Server (CVE-2021-40438, CVE-2021-34798)	17 Dec 202116:40	–	ibm
IBM Security Bulletins	WebSphere Application Server and IBM HTTP Server Security Bulletin List	13 Jul 202218:04	–	ibm

Vulners

Node

f5 big-ip_aamRange<17.0.0

OR

f5 big-ip_afmRange<17.0.0

OR

f5 big-ip_analyticsRange<17.0.0

OR

f5 big-ip_apmRange<17.0.0

OR

f5 big-ip_asmRange<17.0.0

OR

f5 big-ip_ddos_hybrid_defenderRange<17.0.0

OR

f5 big-ip_dnsRange<17.0.0

OR

f5 big-ip_fpsRange<17.0.0

OR

f5 big-ip_gtmRange<17.0.0

OR

f5 big-ip_link_controllerRange<17.0.0

OR

f5 big-ip_ltmRange<17.0.0

OR

f5 big-ip_pemRange<17.0.0

OR

f5 big-ip_ssl_orchestratorRange<17.0.0

OR

f5 big-ip_aamRange16.1.0–16.1.3

OR

f5 big-ip_afmRange16.1.0–16.1.3

OR

f5 big-ip_analyticsRange16.1.0–16.1.3

OR

f5 big-ip_apmRange16.1.0–16.1.3

OR

f5 big-ip_asmRange16.1.0–16.1.3

OR

f5 big-ip_ddos_hybrid_defenderRange16.1.0–16.1.3

OR

f5 big-ip_dnsRange16.1.0–16.1.3

OR

f5 big-ip_fpsRange16.1.0–16.1.3

OR

f5 big-ip_gtmRange16.1.0–16.1.3

OR

f5 big-ip_link_controllerRange16.1.0–16.1.3

OR

f5 big-ip_ltmRange16.1.0–16.1.3

OR

f5 big-ip_pemRange16.1.0–16.1.3

OR

f5 big-ip_ssl_orchestratorRange16.1.0–16.1.3

OR

f5 big-ip_aamRange15.1.0–15.1.6

OR

f5 big-ip_afmRange15.1.0–15.1.6

OR

f5 big-ip_analyticsRange15.1.0–15.1.6

OR

f5 big-ip_apmRange15.1.0–15.1.6

OR

f5 big-ip_asmRange15.1.0–15.1.6

OR

f5 big-ip_ddos_hybrid_defenderRange15.1.0–15.1.6

OR

f5 big-ip_dnsRange15.1.0–15.1.6

OR

f5 big-ip_fpsRange15.1.0–15.1.6

OR

f5 big-ip_gtmRange15.1.0–15.1.6

OR

f5 big-ip_link_controllerRange15.1.0–15.1.6

OR

f5 big-ip_ltmRange15.1.0–15.1.6

OR

f5 big-ip_pemRange15.1.0–15.1.6

OR

f5 big-ip_ssl_orchestratorRange15.1.0–15.1.6

OR

f5 big-ip_aamRange14.1.0–14.1.5

OR

f5 big-ip_afmRange14.1.0–14.1.5

OR

f5 big-ip_analyticsRange14.1.0–14.1.5

OR

f5 big-ip_apmRange14.1.0–14.1.5

OR

f5 big-ip_asmRange14.1.0–14.1.5

OR

f5 big-ip_ddos_hybrid_defenderRange14.1.0–14.1.5

OR

f5 big-ip_dnsRange14.1.0–14.1.5

OR

f5 big-ip_fpsRange14.1.0–14.1.5

OR

f5 big-ip_gtmRange14.1.0–14.1.5

OR

f5 big-ip_link_controllerRange14.1.0–14.1.5

OR

f5 big-ip_ltmRange14.1.0–14.1.5

OR

f5 big-ip_pemRange14.1.0–14.1.5

OR

f5 big-ip_ssl_orchestratorRange14.1.0–14.1.5

OR

f5 big-ip_aamRange13.1.0–13.1.5

OR

f5 big-ip_afmRange13.1.0–13.1.5

OR

f5 big-ip_analyticsRange13.1.0–13.1.5

OR

f5 big-ip_apmRange13.1.0–13.1.5

OR

f5 big-ip_asmRange13.1.0–13.1.5

OR

f5 big-ip_ddos_hybrid_defenderRange13.1.0–13.1.5

OR

f5 big-ip_dnsRange13.1.0–13.1.5

OR

f5 big-ip_fpsRange13.1.0–13.1.5

OR

f5 big-ip_gtmRange13.1.0–13.1.5

OR

f5 big-ip_link_controllerRange13.1.0–13.1.5

OR

f5 big-ip_ltmRange13.1.0–13.1.5

OR

f5 big-ip_pemRange13.1.0–13.1.5

OR

f5 big-ip_ssl_orchestratorRange13.1.0–13.1.5

OR

f5 big-ip_aamRange12.1.0–12.1.6

OR

f5 big-ip_afmRange12.1.0–12.1.6

OR

f5 big-ip_analyticsRange12.1.0–12.1.6

OR

f5 big-ip_apmRange12.1.0–12.1.6

OR

f5 big-ip_asmRange12.1.0–12.1.6

OR

f5 big-ip_ddos_hybrid_defenderRange12.1.0–12.1.6

OR

f5 big-ip_dnsRange12.1.0–12.1.6

OR

f5 big-ip_fpsRange12.1.0–12.1.6

OR

f5 big-ip_gtmRange12.1.0–12.1.6

OR

f5 big-ip_link_controllerRange12.1.0–12.1.6

OR

f5 big-ip_ltmRange12.1.0–12.1.6

OR

f5 big-ip_pemRange12.1.0–12.1.6

OR

f5 big-ip_ssl_orchestratorRange12.1.0–12.1.6

OR

f5 big-ip_aamRange11.6.1–11.6.5

OR

f5 big-ip_afmRange11.6.1–11.6.5

OR

f5 big-ip_analyticsRange11.6.1–11.6.5

OR

f5 big-ip_apmRange11.6.1–11.6.5

OR

f5 big-ip_asmRange11.6.1–11.6.5

OR

f5 big-ip_ddos_hybrid_defenderRange11.6.1–11.6.5

OR

f5 big-ip_dnsRange11.6.1–11.6.5

OR

f5 big-ip_fpsRange11.6.1–11.6.5

OR

f5 big-ip_gtmRange11.6.1–11.6.5

OR

f5 big-ip_link_controllerRange11.6.1–11.6.5

OR

f5 big-ip_ltmRange11.6.1–11.6.5

OR

f5 big-ip_pemRange11.6.1–11.6.5

OR

f5 big-ip_ssl_orchestratorRange11.6.1–11.6.5

OR

f5 f5os-cRange1.5.0–1.5.1

OR

f5 f5os-cRange1.3.0–1.3.2

OR

f5 f5os-cRange1.2.0–1.2.2

OR

f5 f5os-cRange1.1.0–1.1.4

OR

f5 traffix_sdcMatch5.2.0

OR

f5 traffix_sdcMatch5.1.0

04 Jan 2024 02:54Current

7.9High risk

Vulners AI Score7.9

CVSS 25

CVSS 3.17.5

EPSS0.1029

apache httpd cve-2021-34798 malformed requests