Exposures › CVE-2021-40438

CVE-2021-40438

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-12-01
Reference
⌖ exploited in the wild shame 50/100 exploited-in-wild

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.

Players implicated

Description

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.