0.001 Low
EPSS
Percentile
39.0%
jbcs-httpd24-mod_md is vulnerable to information disclosure.The vulnerability exits due to lack of proper normalization of the path component of the request URL which allows an attacker to gain access to unauthorized information.
access.redhat.com/errata/RHSA-2021:4613
access.redhat.com/errata/RHSA-2021:4614
access.redhat.com/security/cve/CVE-2021-3688
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1990252