Buffer Overflow

🗓️ 21 Dec 2021 09:34:13Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 203 Views

apache2 buffer overflow vulnerability in mod_lua multipart parse

Reporter	Title	Published	Views	Family All 242
0day.today	Apache 2.4.x - Buffer Overflow Exploit	2 Apr 202300:00	–	zdt
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Network Manager IP Edition (CVE-2021-44790, CVE-2021-44224)	1 Apr 202210:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Rational Build Forge is affected by Apache HTTP Server version used in it. (CVE-2021-44790)	2 Mar 202214:54	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2021-44790, CVE-2021-44224)	16 Mar 202208:32	–	ibm
IBM Security Bulletins	Security Bulletin: Apache HTTP Server as used by IBM QRadar SIEM is vulnerable to buffer overflow and denial of service (CVE-2021-44790, CVE-2021-34798, CVE-2021-39275)	28 Feb 202217:37	–	ibm
IBM Security Bulletins	WebSphere Application Server and IBM HTTP Server Security Bulletin List	13 Jul 202218:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security SiteProtector System is affected by multiple Apache HTTP Server Vulnerabilities	2 Jun 202202:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in expat, glibc, http server, dojo, openssl shipped with IBM Cloud Pak System	15 Aug 202221:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by IBM WebSphere Application Server	12 Jan 202219:17	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities have been identified in Spring Framework, OpenSSL and Apache HTTP Server shipped with the DS8000 Hardware Management Console (HMC)	3 Feb 202321:20	–	ibm

Vulners

Node

debian apache2Match2.4.50-r0os

AND

debian apache2Match2.4.49-r0os

AND

debian apache2Match2.4.48-r0os

AND

debian apache2Match2.4.46-r3os

AND

debian apache2Match2.4.51-r0os

AND

alpinelinux alpine_linuxMatch3.13

debian apache2Match2.4.51-r1os

AND

debian apache2Match2.4.51-r0os

AND

alpinelinux alpine_linuxMatch3.15

debian apache2Match2.4.49-r0os

AND

debian apache2Match2.4.51-r0os

AND

debian apache2Match2.4.50-r0os

AND

debian apache2Match2.4.48-r0os

AND

debian apache2Match2.4.46-r1os

AND

debian apache2Match2.4.43-r0os

AND

alpinelinux alpine_linuxMatch3.12

debian apache2Match2.4.46-r3os

AND

debian apache2Match2.4.51-r0os

AND

debian apache2Match2.4.48-r0os

AND

debian apache2Match2.4.50-r0os

AND

debian apache2Match2.4.49-r0os

AND

alpinelinux alpine_linuxMatch3.14

debian apache2Match2.4.51-r0os

AND

debian apache2Match2.4.50-r0os

AND

debian apache2Match2.4.49-r1os

AND

debian apache2Match2.4.48-r0os

AND

debian apache2Match2.4.43-r0os

AND

debian apache2Match2.4.51-r1os

AND

debian apache2Match2.4.41-r0os

AND

debian apache2Match2.4.46-r3os

AND

debian apache2Match2.4.48-r2os

AND

alpinelinux alpine_linuxMatchedge

debian apache2Match2.4.46-4debian

AND

debian apache2Match2.4.46-2debian

AND

debian debian_linuxMatch999

google bionicMatch2.4.29-1ubuntu4.14debian

AND

google bionicMatch2.4.29-1ubuntu4.16debian

AND

google bionicMatch2.4.29-1ubuntu4debian

AND

debian debian_linux

hirsute hirsuteMatch2.4.46-1ubuntu1debian

AND

hirsute hirsuteMatch2.4.46-1ubuntu2debian

AND

hirsute hirsuteMatch2.4.46-2ubuntu1debian

AND

hirsute hirsuteMatch2.4.46-4ubuntu1debian

AND

debian debian_linux

focal focalMatch2.4.41-4ubuntu3.2debian

AND

focal focalMatch2.4.41-4ubuntu3.1debian

AND

focal focalMatch2.4.41-4ubuntu3debian

AND

debian debian_linux

debian apache2Match2.4.48-3.1debian

AND

debian apache2Match2.4.46-2debian

AND

debian debian_linuxMatch11

debian apache2Match2.4.38-3+deb10u4debian

AND

debian apache2Match2.4.38-3+deb10u5debian

AND

debian debian_linuxMatch10

devel develMatch2.4.46-1ubuntu1debian

AND

devel develMatch2.4.46-1ubuntu2debian

AND

devel develMatch2.4.46-2ubuntu1debian

AND

debian debian_linux

debian apache2Match2.4.25-3+deb9u9debian

AND

debian debian_linuxMatch9

httpd24-httpd httpd24-httpdMatch2.4.27_8.el7

httpd24-httpd httpd24-httpdMatch2.4.12_6.el7.1

httpd24-httpd httpd24-httpdMatch2.4.34_22.el7

httpd24-httpd httpd24-httpdMatch2.4.34_22.el7.1

httpd24-httpd httpd24-httpdMatch2.4.34_18.el7

httpd24-httpd httpd24-httpdMatch2.4.34_8.el7.1

httpd24-httpd httpd24-httpdMatch2.4.18_10.el7

httpd24-httpd httpd24-httpdMatch2.4.18_11.el7

httpd24-httpd httpd24-httpdMatch2.4.25_9.el7

httpd24-httpd httpd24-httpdMatch2.4.34_15.el7

httpd24-httpd httpd24-httpdMatch2.4.34_7.el7

httpd24-httpd httpd24-httpdMatch2.4.27_8.el7.1

httpd24-httpd httpd24-httpdMatch2.4.34_7.el7.1

httpd24-httpd httpd24-httpdMatch2.4.34_18.el7.1

httpd httpdMatch2.4.6_89.el7.centos

httpd httpdMatch2.4.6_80.el7.centos.1

httpd httpdMatch2.4.6_89.el7.centos.1

httpd httpdMatch2.4.6_88.el7.centos

httpd httpdMatch2.4.6_93.el7.centos

httpd httpdMatch2.4.6_31.ael7b_1.1

httpd httpdMatch2.4.6_80.el7.centos

httpd httpdMatch2.4.6_95.el7.centos

httpd httpdMatch2.4.6_90.el7.centos

Source	Link
seclists	www.seclists.org/fulldisclosure/2022/May/38
seclists	www.seclists.org/fulldisclosure/2022/May/35
seclists	www.seclists.org/fulldisclosure/2022/May/33
secdb	www.secdb.alpinelinux.org/v3.12/main.yaml
secdb	www.secdb.alpinelinux.org/v3.15/main.yaml
secdb	www.secdb.alpinelinux.org/v3.13/main.yaml
secdb	www.secdb.alpinelinux.org/v3.14/main.yaml
secdb	www.secdb.alpinelinux.org/edge/main.yaml
debian	www.debian.org/security/2022/dsa-5035
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFSWOH4X77CV7AH7C4RMHUBDWKQDL4YH/

07 Nov 2023 22:31Current

4.4Medium risk

Vulners AI Score4.4

CVSS 27.5

CVSS 3.19.8

EPSS0.86227