Lucene search
Ubuntu.comUB:CVE-2022-22721HistoryMar 14, 2022 - 12:00 a.m.
CVE-2022-22721
2022-03-1400:00:00
ubuntu.com
ubuntu.com
11
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
71.2%
If LimitXMLRequestBody is set to allow request bodies larger than 350MB
(defaults to 1M) on 32 bit systems an integer overflow happens which later
causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52
and earlier.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | apache2 | < 2.4.29-1ubuntu4.22 | UNKNOWN |
| ubuntu | 20.04 | noarch | apache2 | < 2.4.41-4ubuntu3.10 | UNKNOWN |
| ubuntu | 21.10 | noarch | apache2 | < 2.4.48-3.1ubuntu3.3 | UNKNOWN |
| ubuntu | 22.04 | noarch | apache2 | < 2.4.52-1ubuntu2 | UNKNOWN |
| ubuntu | 14.04 | noarch | apache2 | < 2.4.7-1ubuntu4.22+esm4) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
| ubuntu | 16.04 | noarch | apache2 | < 2.4.18-2ubuntu3.17+esm5) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
References
Related
prion
prion
Integer overflow
2022-03-14 11:15:00
alpinelinux
alpinelinux
CVE-2022-22721
2022-03-14 11:15:00
debiancve
debiancve
CVE-2022-22721
2022-03-14 11:15:00
f5
f5
K20451100 : Apache vulnerability CVE-2022-22721
2022-04-12 00:00:00
osv
osv
CVE-2022-22721
2022-03-14 11:15:09
BIT-apache-2022-22721
2024-03-06 10:53:38
apache2 vulnerabilities
2022-03-17 11:31:47
zdi
zdi
ibm
ibm
veracode
veracode
Integer Overflow
2022-03-15 10:12:50
cbl_mariner
cbl_mariner
CVE-2022-22721 affecting package httpd 2.4.52-1
2022-04-07 06:04:02
CVE-2022-22721 affecting package httpd 2.4.52-1
2022-04-26 19:57:38
httpd
httpd
cve
cve
CVE-2022-22721
2022-03-14 11:15:00
redhatcve
redhatcve
CVE-2022-22721
2022-03-15 14:43:53
nessus
nessus
SUSE SLES11 Security Update : apache2 (SUSE-SU-2022:14924-1)
2022-03-22 00:00:00
Oracle Enterprise Manager Ops Center (Jul 2022 CPU)
2022-07-22 00:00:00
EulerOS 2.0 SP9 : httpd (EulerOS-SA-2022-1867)
2022-06-15 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:14924-1)
2022-03-22 00:00:00
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1893)
2022-06-17 00:00:00
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1790)
2022-06-07 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2022-22721, CVE-2022-22720
2022-03-24 15:36:17
suse
suse
Security update for apache2 (important)
2022-03-29 00:00:00
slackware
slackware
[slackware-security] httpd
2022-03-15 01:06:06
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 1:2.4.53-alt1
2022-03-25 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.53-alt1
2022-03-29 00:00:00
redos
redos
ROS-20220317-01
2022-03-17 00:00:00
amazon
amazon
Important: httpd
2022-04-25 22:57:00
Important: httpd24
2022-04-26 17:12:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2022-03-17 00:00:00
Apache HTTP Server vulnerabilities
2022-03-17 00:00:00
debian
debian
[SECURITY] [DLA 2960-1] apache2 security update
2022-03-22 07:32:37
kaspersky
kaspersky
KLA12485 Multiple vulnerabilities in Apache HTTP Server
2022-03-14 00:00:00
mageia
mageia
Updated apache packages fix security vulnerability
2022-03-21 23:18:30
fedora
fedora
[SECURITY] Fedora 34 Update: httpd-2.4.53-1.fc34
2022-03-25 22:06:50
[SECURITY] Fedora 36 Update: httpd-2.4.53-1.fc36
2022-03-26 15:55:33
[SECURITY] Fedora 35 Update: httpd-2.4.53-1.fc35
2022-03-22 03:44:42
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2022-03-14 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0455
2022-03-25 00:00:00
Critical Photon OS Security Update - PHSA-2022-0166
2022-03-25 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0166
2022-03-25 00:00:00
thn
thn
oraclelinux
oraclelinux
httpd:2.4 security update
2022-11-15 00:00:00
httpd security, bug fix, and enhancement update
2022-11-22 00:00:00
almalinux
almalinux
Moderate: httpd:2.4 security update
2022-11-08 00:00:00
Moderate: httpd security, bug fix, and enhancement update
2022-11-15 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2160
2023-04-25 12:02:31
rocky
rocky
httpd:2.4 security update
2022-11-08 06:25:28
httpd security, bug fix, and enhancement update
2022-11-15 06:14:59
redhat
redhat
(RHSA-2022:7647) Moderate: httpd:2.4 security update
2022-11-08 06:25:28
(RHSA-2022:8067) Moderate: httpd security, bug fix, and enhancement update
2022-11-15 06:14:59
(RHSA-2022:6753) Moderate: httpd24-httpd security and bug fix update
2022-09-29 13:20:41
gentoo
gentoo
Apache HTTPD: Multiple Vulnerabilities
2022-08-14 00:00:00
apple
apple
About the security content of Security Update 2022-004 Catalina
2022-05-16 00:00:00
About the security content of macOS Big Sur 11.6.6
2022-05-16 00:00:00
About the security content of macOS Monterey 12.4
2022-05-16 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
71.2%
Related for UB:CVE-2022-22721