Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.AL2_ALAS-2021-1716.NASL
HistoryOct 16, 2021 - 12:00 a.m.

Amazon Linux 2 : httpd (ALAS-2021-1716)

2021-10-1600:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
95

9.6 High

AI Score

Confidence

High

JSON

The version of httpd installed on the remote host is prior to 2.4.51-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1716 advisory.

  • A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.
    (CVE-2021-33193)

  • Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier. (CVE-2021-34798)

  • A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive). (CVE-2021-36160)

  • ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier. (CVE-2021-39275)

  • A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier. (CVE-2021-40438)

  • While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No exploit is known to the project.
    (CVE-2021-41524)

  • A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration require all denied, these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue is known to be exploited in the wild. This issue only affects Apache 2.4.49 and not earlier versions. The fix in Apache HTTP Server 2.4.50 was found to be incomplete, see CVE-2021-42013. (CVE-2021-41773)

  • It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration require all denied, these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue only affects Apache 2.4.49 and Apache 2.4.50 and not earlier versions. (CVE-2021-42013)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux 2 Security Advisory ALAS-2021-1716.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(154179);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/18");

  script_cve_id(
    "CVE-2021-33193",
    "CVE-2021-34798",
    "CVE-2021-36160",
    "CVE-2021-39275",
    "CVE-2021-40438",
    "CVE-2021-41524",
    "CVE-2021-41773",
    "CVE-2021-42013"
  );
  script_xref(name:"IAVA", value:"2021-A-0440-S");
  script_xref(name:"IAVA", value:"2021-A-0451-S");
  script_xref(name:"ALAS", value:"2021-1716");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2021/11/17");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2021/12/15");
  script_xref(name:"CEA-ID", value:"CEA-2021-0046");

  script_name(english:"Amazon Linux 2 : httpd (ALAS-2021-1716)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Amazon Linux 2 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The version of httpd installed on the remote host is prior to 2.4.51-1. It is, therefore, affected by multiple
vulnerabilities as referenced in the ALAS2-2021-1716 advisory.

  - A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead
    to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.
    (CVE-2021-33193)

  - Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP
    Server 2.4.48 and earlier. (CVE-2021-34798)

  - A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and
    crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive). (CVE-2021-36160)

  - ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules
    pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache
    HTTP Server 2.4.48 and earlier. (CVE-2021-39275)

  - A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the
    remote user. This issue affects Apache HTTP Server 2.4.48 and earlier. (CVE-2021-40438)

  - While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request
    processing, allowing an external source to DoS the server. This requires a specially crafted request. The
    vulnerability was recently introduced in version 2.4.49. No exploit is known to the project.
    (CVE-2021-41524)

  - A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could
    use a path traversal attack to map URLs to files outside the directories configured by Alias-like
    directives. If files outside of these directories are not protected by the usual default configuration
    require all denied, these requests can succeed. If CGI scripts are also enabled for these aliased
    pathes, this could allow for remote code execution. This issue is known to be exploited in the wild. This
    issue only affects Apache 2.4.49 and not earlier versions. The fix in Apache HTTP Server 2.4.50 was found
    to be incomplete, see CVE-2021-42013. (CVE-2021-41773)

  - It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker
    could use a path traversal attack to map URLs to files outside the directories configured by Alias-like
    directives. If files outside of these directories are not protected by the usual default configuration
    require all denied, these requests can succeed. If CGI scripts are also enabled for these aliased
    pathes, this could allow for remote code execution. This issue only affects Apache 2.4.49 and Apache
    2.4.50 and not earlier versions. (CVE-2021-42013)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/AL2/ALAS-2021-1716.html");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-33193");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-34798");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-36160");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-39275");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-40438");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-41524");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-41773");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2021-42013");
  script_set_attribute(attribute:"solution", value:
"Run 'yum update httpd' to update your system.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-42013");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"d2_elliot_name", value:"Apache 2.4.50 RCE");
  script_set_attribute(attribute:"exploit_framework_d2_elliot", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache 2.4.49/2.4.50 Traversal RCE');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/08/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/10/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/10/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd-filesystem");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd-manual");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:httpd-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mod_ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mod_md");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mod_proxy_html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mod_session");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mod_ssl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux:2");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Amazon Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
var os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
var os_ver = os_ver[1];
if (os_ver != "2")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux 2", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var pkgs = [
    {'reference':'httpd-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-debuginfo-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-debuginfo-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-debuginfo-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-devel-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-devel-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-devel-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-filesystem-2.4.51-1.amzn2', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-manual-2.4.51-1.amzn2', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-tools-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-tools-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'httpd-tools-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ldap-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ldap-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ldap-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_md-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_md-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_md-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_proxy_html-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_proxy_html-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_proxy_html-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_session-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_session-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_session-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ssl-2.4.51-1.amzn2', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ssl-2.4.51-1.amzn2', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'mod_ssl-2.4.51-1.amzn2', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var reference = NULL;
  var release = NULL;
  var cpu = NULL;
  var el_string = NULL;
  var rpm_spec_vers_cmp = NULL;
  var allowmaj = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) release = package_array['release'];
  if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (reference && release) {
    if (rpm_check(release:release, cpu:cpu, reference:reference, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "httpd / httpd-debuginfo / httpd-devel / etc");
}
VendorProductVersionCPE
amazonlinuxhttpdp-cpe:/a:amazon:linux:httpd
amazonlinuxhttpd-debuginfop-cpe:/a:amazon:linux:httpd-debuginfo
amazonlinuxhttpd-develp-cpe:/a:amazon:linux:httpd-devel
amazonlinuxhttpd-filesystemp-cpe:/a:amazon:linux:httpd-filesystem
amazonlinuxhttpd-manualp-cpe:/a:amazon:linux:httpd-manual
amazonlinuxhttpd-toolsp-cpe:/a:amazon:linux:httpd-tools
amazonlinuxmod_ldapp-cpe:/a:amazon:linux:mod_ldap
amazonlinuxmod_mdp-cpe:/a:amazon:linux:mod_md
amazonlinuxmod_proxy_htmlp-cpe:/a:amazon:linux:mod_proxy_html
amazonlinuxmod_sessionp-cpe:/a:amazon:linux:mod_session
Rows per page:
1-10 of 121

References

Related

nessus 42
amazon 2
altlinux 4
openvas 39
kaspersky 2
osv 12
ubuntu 4
slackware 3
mageia 3
cisco 2
freebsd 3
suse 2
debian 2
redhat 2
photon 7
malwarebytes 1
ibm 9
ics 1
fedora 4
hivepro 1
thn 2
attackerkb 4
oraclelinux 3
prion 2
alpinelinux 2
packetstorm 2
rapid7blog 1
cisa 2
githubexploit 8
cve 2
metasploit 2
debiancve 2
hackerone 2
cisa_kev 2
httpd 1
ubuntucve 2
nuclei 2
zdt 2
almalinux 1
rocky 1
qualysblog 1
impervablog 1
archlinux 1
checkpoint_advisories 1
jvn 1
redhatcve 1
f5 1
trellix 2
nessus
nessus
Amazon Linux AMI : httpd24 (ALAS-2021-1543)
2021-10-17 00:00:00
Slackware Linux 14.0 / 14.1 / 14.2 / current httpd Multiple Vulnerabilities (SSA:2021-259-01)
2021-09-17 00:00:00
Apache 2.4.x < 2.4.49 Multiple Vulnerabilities
2021-09-17 00:00:00
amazon
amazon
Important: httpd24
2021-10-15 07:52:00
Important: httpd
2021-10-15 07:57:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 1:2.4.49-alt1
2021-10-04 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.49-alt1
2021-09-23 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.50-alt1
2021-10-07 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0439)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:3335-1)
2021-10-13 00:00:00
Slackware: Security Advisory (SSA:2021-259-01)
2022-04-21 00:00:00
kaspersky
kaspersky
KLA12370 Multiple vulnerabilities in Apache HTTP Server
2021-09-16 00:00:00
KLA12371 Multiple vulnerabilities in Apache HTTP Server
2021-10-04 00:00:00
osv
osv
apache2 regression
2021-09-28 15:05:47
apache2 regression
2021-09-28 13:28:37
apache2 vulnerabilities
2021-09-27 14:06:45
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2021-09-27 00:00:00
Apache HTTP Server regression
2021-09-28 00:00:00
Apache HTTP Server regression
2021-09-28 00:00:00
slackware
slackware
[slackware-security] httpd
2021-09-17 04:22:20
[slackware-security] httpd
2021-10-06 01:14:05
[slackware-security] httpd
2021-10-08 03:27:06
mageia
mageia
Updated apache packages fix security vulnerability
2021-09-23 07:49:29
Updated apache packages fix security vulnerabilities
2021-10-06 17:38:41
Updated apache packages fix security vulnerability
2021-10-08 22:12:12
cisco
cisco
Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021
2021-11-24 16:00:00
Apache HTTP Server Vulnerabilities: October 2021
2021-10-07 16:00:00
freebsd
freebsd
Apache httpd -- multiple vulnerabilities
2021-09-16 00:00:00
Apache httpd -- Multiple vulnerabilities
2021-10-05 00:00:00
Apache httpd -- Path Traversal and Remote Code Execution
2021-10-07 00:00:00
suse
suse
Security update for apache2 (important)
2021-11-02 00:00:00
Security update for apache2 (important)
2021-10-26 00:00:00
debian
debian
[SECURITY] [DSA 4982-1] apache2 security update
2021-10-08 20:56:04
[SECURITY] [DLA 2776-1] apache2 security update
2021-10-02 16:07:56
redhat
redhat
(RHSA-2022:7143) Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update
2022-10-26 20:05:14
(RHSA-2022:0891) Moderate: httpd:2.4 security update
2022-03-15 09:10:44
photon
photon
Critical Photon OS Security Update - PHSA-2021-0118
2021-10-19 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0118
2021-10-20 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0437
2021-10-01 00:00:00
malwarebytes
malwarebytes
[Updated, again] Apache fixes zero-day vulnerability in HTTP Server
2021-10-06 14:23:08
ibm
ibm
Security Bulletin: Multiple vulnerabilities affect IBM HTTP Server (powered by Apache) for i
2021-12-06 17:06:29
Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2021-39275, CVE-2021-40438, CVE-2021-34798)
2021-11-08 04:06:25
Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with WebSphere Remote Server (CVE-2021-40438, CVE-2021-34798)
2021-12-17 16:40:29
ics
ics
Siemens Apache HTTP Server (Update A)
2022-10-13 12:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: httpd-2.4.50-1.fc35
2021-10-29 23:19:42
[SECURITY] Fedora 34 Update: httpd-2.4.50-1.fc34
2021-10-07 17:19:23
[SECURITY] Fedora 34 Update: httpd-2.4.51-1.fc34
2021-10-12 23:46:03
hivepro
hivepro
Multiple vulnerabilities have been discovered in the Apache HTTP Server
2021-10-06 08:57:02
thn
thn
Apache Warns of Zero-Day Exploit in the Wild — Patch Your Web Servers Now!
2021-10-05 14:53:00
New Patch Released for Actively Exploited 0-Day Apache Path Traversal to RCE Attacks
2021-10-08 04:47:00
attackerkb
attackerkb
CVE-2021-40438
2021-09-16 00:00:00
CVE-2021-42013: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
2021-10-08 00:00:00
CVE-2021-41773
2021-10-05 00:00:00
oraclelinux
oraclelinux
httpd:2.4 security update
2022-01-06 00:00:00
httpd:2.4 security update
2022-03-16 00:00:00
httpd security update
2021-12-16 00:00:00
prion
prion
Path traversal
2021-10-05 09:15:00
Path traversal
2021-10-07 16:15:00
alpinelinux
alpinelinux
CVE-2021-41773
2021-10-05 09:15:00
CVE-2021-42013
2021-10-07 16:15:00
packetstorm
packetstorm
Apache 2.4.49 / 2.4.50 Traversal / Remote Code Execution
2021-10-25 00:00:00
Apache HTTP Server 2.4.50 Remote Code Execution
2021-11-11 00:00:00
rapid7blog
rapid7blog
Apache HTTP Server CVE-2021-41773 Exploited in the Wild
2021-10-06 16:42:32
cisa
cisa
Apache Releases Security Update for Apache HTTP Server
2021-10-06 00:00:00
Apache Releases HTTP Server version 2.4.51 to Address Vulnerabilities Under Exploitation
2021-10-07 00:00:00
githubexploit
githubexploit
Exploit for Path Traversal in Apache Http Server
2021-10-09 11:33:56
Exploit for Path Traversal in Apache Http Server
2021-11-09 05:13:17
Exploit for Path Traversal in Apache Http Server
2021-10-09 03:32:18
cve
cve
CVE-2021-42013
2021-10-07 16:15:00
CVE-2021-41773
2021-10-05 09:15:00
metasploit
metasploit
Apache 2.4.49/2.4.50 Traversal RCE scanner
2021-10-06 17:00:59
Apache 2.4.49/2.4.50 Traversal RCE
2021-10-08 11:22:47
debiancve
debiancve
CVE-2021-41773
2021-10-05 09:15:00
CVE-2021-42013
2021-10-07 16:15:00
hackerone
hackerone
Internet Bug Bounty: Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49
2021-11-08 21:47:54
Internet Bug Bounty: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) (CVE-2021-42013)
2021-11-14 23:54:06
cisa_kev
cisa_kev
Apache HTTP Server Path Traversal Vulnerability
2021-11-03 00:00:00
Apache HTTP Server Path Traversal Vulnerability
2021-11-03 00:00:00
httpd
httpd
Apache Httpd < 2.4.51 : Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
2021-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2021-42013
2021-10-07 00:00:00
CVE-2021-41773
2021-10-05 00:00:00
nuclei
nuclei
Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution
2021-10-07 18:17:29
Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution
2021-10-07 18:17:29
zdt
zdt
Apache 2.4.49 / 2.4.50 Traversal / Remote Code Execution Exploit
2021-10-26 00:00:00
Apache HTTP Server 2.4.50 - Remote Code Execution Exploit (3)
2021-11-11 00:00:00
almalinux
almalinux
Moderate: httpd:2.4 security update
2022-03-15 09:10:44
rocky
rocky
httpd:2.4 security update
2022-03-15 09:10:44
qualysblog
qualysblog
Apache HTTP Server Path Traversal & Remote Code Execution (CVE-2021-41773 & CVE-2021-42013)
2021-10-28 06:22:22
impervablog
impervablog
How RASP Protects Apache Servers from zero-day Path Traversal Attacks (CVE-2021-41773)
2021-10-26 19:35:24
archlinux
archlinux
[ASA-202110-1] apache: directory traversal
2021-10-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTP Server Directory Traversal (CVE-2021-41773; CVE-2021-42013)
2021-10-06 00:00:00
jvn
jvn
JVN#51106450: Apache HTTP Server vulnerable to directory traversal
2021-10-08 00:00:00
redhatcve
redhatcve
CVE-2021-42013
2021-10-07 17:33:09
f5
f5
K04082144 : Apache HTTP Server vulnerability CVE-2021-41773, CVE-2021-42013
2021-10-21 00:00:00
trellix
trellix
The Bug Report – October Edition
2021-11-02 00:00:00
The Bug Report – October Edition
2021-11-02 00:00:00

9.6 High

AI Score

Confidence

High

JSON
Related for AL2_ALAS-2021-1716.NASL
nessus42amazon2altlinux4openvas39kaspersky2osv12ubuntu4slackware3mageia3cisco2freebsd3suse2debian2redhat2photon7malwarebytes1ibm9ics1fedora4hivepro1thn2attackerkb4oraclelinux3prion2alpinelinux2packetstorm2rapid7blog1cisa2githubexploit8cve2metasploit2debiancve2hackerone2cisa_kev2httpd1ubuntucve2nuclei2zdt2almalinux1rocky1qualysblog1impervablog1archlinux1checkpoint_advisories1jvn1redhatcve1f51trellix2