Lucene search
Ubuntu.comUB:CVE-2022-22719HistoryMar 14, 2022 - 12:00 a.m.
CVE-2022-22719
2022-03-1400:00:00
ubuntu.com
ubuntu.com
6
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.387 Low
EPSS
Percentile
97.2%
A carefully crafted request body can cause a read to a random memory area
which could cause the process to crash. This issue affects Apache HTTP
Server 2.4.52 and earlier.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | apache2 | < 2.4.29-1ubuntu4.22 | UNKNOWN |
| ubuntu | 20.04 | noarch | apache2 | < 2.4.41-4ubuntu3.10 | UNKNOWN |
| ubuntu | 21.10 | noarch | apache2 | < 2.4.48-3.1ubuntu3.3 | UNKNOWN |
| ubuntu | 22.04 | noarch | apache2 | < 2.4.52-1ubuntu2 | UNKNOWN |
| ubuntu | 14.04 | noarch | apache2 | < 2.4.7-1ubuntu4.22+esm4) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
| ubuntu | 16.04 | noarch | apache2 | < 2.4.18-2ubuntu3.17+esm5) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
References
Related
hackerone
hackerone
alpinelinux
alpinelinux
CVE-2022-22719
2022-03-14 11:15:00
cbl_mariner
cbl_mariner
CVE-2022-22719 affecting package httpd 2.4.52-1
2022-04-07 06:04:02
CVE-2022-22719 affecting package httpd 2.4.52-1
2022-04-26 19:57:38
debiancve
debiancve
CVE-2022-22719
2022-03-14 11:15:00
ibm
ibm
osv
osv
CVE-2022-22719
2022-03-14 11:15:09
BIT-apache-2022-22719
2024-03-06 10:53:56
apache2 vulnerabilities
2022-03-17 11:31:47
f5
f5
K87540800 : Apache vulnerability CVE-2022-22719
2022-04-19 00:00:00
httpd
httpd
Apache Httpd < 2.4.53 : mod_lua Use of uninitialized value of in r:parsebody
2022-03-14 00:00:00
prion
prion
Design/Logic Flaw
2022-03-14 11:15:00
veracode
veracode
Denial Of Service (DoS)
2022-03-15 10:14:37
redhatcve
redhatcve
CVE-2022-22719
2022-03-15 14:43:48
cve
cve
CVE-2022-22719
2022-03-14 11:15:00
nessus
nessus
Amazon Linux 2 : httpd (ALAS-2022-1783)
2022-04-27 00:00:00
EulerOS 2.0 SP10 : httpd (EulerOS-SA-2022-1790)
2022-06-06 00:00:00
EulerOS 2.0 SP8 : httpd (EulerOS-SA-2022-1569)
2022-04-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 1:2.4.53-alt1
2022-03-29 00:00:00
Security fix for the ALT Linux 10 package apache2 version 1:2.4.53-alt1
2022-03-25 00:00:00
amazon
amazon
Important: httpd24
2022-04-26 17:12:00
Important: httpd
2022-04-25 22:57:00
openvas
openvas
Ubuntu: Security Advisory (USN-5333-1)
2022-03-18 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0918-1)
2022-03-22 00:00:00
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1893)
2022-06-17 00:00:00
suse
suse
Security update for apache2 (important)
2022-03-29 00:00:00
slackware
slackware
[slackware-security] httpd
2022-03-15 01:06:06
redos
redos
ROS-20220317-01
2022-03-17 00:00:00
kaspersky
kaspersky
KLA12485 Multiple vulnerabilities in Apache HTTP Server
2022-03-14 00:00:00
mageia
mageia
Updated apache packages fix security vulnerability
2022-03-21 23:18:30
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2022-03-17 00:00:00
Apache HTTP Server vulnerabilities
2022-03-17 00:00:00
debian
debian
[SECURITY] [DLA 2960-1] apache2 security update
2022-03-22 07:32:37
fedora
fedora
[SECURITY] Fedora 34 Update: httpd-2.4.53-1.fc34
2022-03-25 22:06:50
[SECURITY] Fedora 36 Update: httpd-2.4.53-1.fc36
2022-03-26 15:55:33
[SECURITY] Fedora 35 Update: httpd-2.4.53-1.fc35
2022-03-22 03:44:42
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2022-03-14 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0455
2022-03-25 00:00:00
Critical Photon OS Security Update - PHSA-2022-0166
2022-03-25 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0166
2022-03-25 00:00:00
thn
thn
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2022-11-22 00:00:00
httpd:2.4 security update
2022-11-15 00:00:00
rocky
rocky
httpd:2.4 security update
2022-11-08 06:25:28
httpd security, bug fix, and enhancement update
2022-11-15 06:14:59
redhat
redhat
(RHSA-2022:7647) Moderate: httpd:2.4 security update
2022-11-08 06:25:28
(RHSA-2022:8067) Moderate: httpd security, bug fix, and enhancement update
2022-11-15 06:14:59
(RHSA-2022:6753) Moderate: httpd24-httpd security and bug fix update
2022-09-29 13:20:41
rosalinux
rosalinux
Advisory ROSA-SA-2023-2160
2023-04-25 12:02:31
almalinux
almalinux
Moderate: httpd:2.4 security update
2022-11-08 00:00:00
Moderate: httpd security, bug fix, and enhancement update
2022-11-15 00:00:00
gentoo
gentoo
Apache HTTPD: Multiple Vulnerabilities
2022-08-14 00:00:00
apple
apple
About the security content of Security Update 2022-004 Catalina
2022-05-16 00:00:00
About the security content of macOS Big Sur 11.6.6
2022-05-16 00:00:00
About the security content of macOS Monterey 12.4
2022-05-16 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.387 Low
EPSS
Percentile
97.2%
Related for UB:CVE-2022-22719