Lucene search

Important: Red Hat Security Advisory: httpd security update

🗓️ 24 Mar 2022 10:16:50Reported by RedHatType

RHSA-2022:1045 httpd security update, HTTP request smuggling vulnerability

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
IBM Security Bulletins	Security Bulletin: IBM Rational Build Forge is vulnerable to HTTP request smuggling due to use of Apache HTTP server CVE-2022-22720	21 Jul 202205:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Aspera Orchestrator was vulnerable to HTTP request smuggling due to an Apache HTTP Server vulnerability (CVE-2022-22720)	2 Feb 202317:45	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache HTTP (CVE-2022-22720) affects Power HMC	31 May 202208:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server (powered by Apache) for IBM i is vulnerable to HTTP request smuggling and a buffer overflow (CVE-2022-22720, CVE-2022-22721)	13 Jun 202222:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by WebSphere Application Server affect IBM Business Automation Workflow and IBM Business Process Manager	14 Sep 202215:28	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server shipped with IBM WebSphere Application Server Pattern (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)	11 May 202222:11	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Netcool Configuration Manager (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)	24 May 202209:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)	31 Mar 202202:52	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by IBM WebSphere Application Server (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)	22 Mar 202217:56	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in IBM HTTP Server used by IBM Rational ClearQuest (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)	30 Mar 202202:40	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
RedHat	7	ppc64	httpd	2.4.6-97.el7_9.5	httpd-2.4.6-97.el7_9.5.ppc64.rpm
RedHat	7	ppc64le	httpd	2.4.6-97.el7_9.5	httpd-2.4.6-97.el7_9.5.ppc64le.rpm
RedHat	7	s390x	httpd	2.4.6-97.el7_9.5	httpd-2.4.6-97.el7_9.5.s390x.rpm
RedHat	7	x86_64	httpd	2.4.6-97.el7_9.5	httpd-2.4.6-97.el7_9.5.x86_64.rpm
RedHat	7	ppc64	httpd-debuginfo	2.4.6-97.el7_9.5	httpd-debuginfo-2.4.6-97.el7_9.5.ppc64.rpm
RedHat	7	ppc64le	httpd-debuginfo	2.4.6-97.el7_9.5	httpd-debuginfo-2.4.6-97.el7_9.5.ppc64le.rpm
RedHat	7	s390x	httpd-debuginfo	2.4.6-97.el7_9.5	httpd-debuginfo-2.4.6-97.el7_9.5.s390x.rpm
RedHat	7	x86_64	httpd-debuginfo	2.4.6-97.el7_9.5	httpd-debuginfo-2.4.6-97.el7_9.5.x86_64.rpm
RedHat	7	ppc64	httpd-devel	2.4.6-97.el7_9.5	httpd-devel-2.4.6-97.el7_9.5.ppc64.rpm
RedHat	7	ppc64le	httpd-devel	2.4.6-97.el7_9.5	httpd-devel-2.4.6-97.el7_9.5.ppc64le.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2022-22720
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
httpd	www.httpd.apache.org/security/vulnerabilities_24.html
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-22720
cve	www.cve.org/CVERecord

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Mar 2022 10:50Current

9.4High risk

Vulners AI Score9.4

CVSS27.5

CVSS39.8

EPSS0.32823

CWE-444