CVE-2021-26691
Published at:
-
10-06-2021 09:15
Last modified:
-
25-03-2022 07:32
Total changes:
-
11
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
High
Availability
High
Confidentiality
High
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
9.8
Base score
3.9
5.9
Exploitability score
Impact score
Verification logic
Reference
- N/A-Vendor Advisory
- N/A-Mailing List, Release Notes, Vendor Advisory
- [httpd-dev] 20210610 Re: svn commit: r1890598 - in /httpd/site/trunk/content/security/json: CVE-2019-17567.json CVE-2020-13938.json CVE-2020-13950.json CVE-2020-35452.json CVE-2021-26690.json CVE-2021-26691.json CVE-2021-30641.json CVE-2021-31618.json-Mailing List, Vendor Advisory
- [httpd-announce] 20210609 CVE-2021-26691: mod_session response handling heap overflow-Mailing List, Vendor Advisory
- [oss-security] 20210609 CVE-2021-26691: Apache httpd: mod_session response handling heap overflow-Mailing List, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20210702-0001/
- [debian-lts-announce] 20210709 [SECURITY] [DLA 2706-1] apache2 security update-Mailing List, Third Party Advisory
- DSA-4937-Mailing List, Third Party Advisory
- GLSA-202107-38-Third Party Advisory
- FEDORA-2021-dce7e7738e-Mailing List, Third Party Advisory
- FEDORA-2021-e3f6dd670d-Mailing List, Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://www.oracle.com/security-alerts/cpujan2022.html
Keywords