CVE-2021-40438
Published at:
-
16-09-2021 05:15
Last modified:
-
15-08-2022 01:15
Total changes:
-
19
Description
Common Vulnerability Scoring System (CVSS)
High
Attack complexity
Network
Attack vector
High
Availability
High
Confidentiality
High
Integrity
None
Privileges required
Changed
Scope
None
User interaction
9.0
Base score
2.2
6.0
Exploitability score
Impact score
Verification logic
Reference
- https://httpd.apache.org/security/vulnerabilities_24.html
- FEDORA-2021-dce7e7738e-Mailing List, Third Party Advisory
- [httpd-users] 20210923 Re: [users@httpd] 2.4.49 security fixes: more info-Mailing List, Vendor Advisory
- [httpd-users] 20210923 [users@httpd] 2.4.49 security fixes: more info-Mailing List, Vendor Advisory
- [httpd-users] 20210923 [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info-Mailing List, Vendor Advisory
- [httpd-users] 20210923 Re: [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info-Mailing List, Vendor Advisory
- FEDORA-2021-e3f6dd670d-Mailing List, Third Party Advisory
- [debian-lts-announce] 20211002 [SECURITY] [DLA 2776-1] apache2 security update-Mailing List, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20211008-0004/
- [httpd-bugs] 20211008 [Bug 65616] CVE-2021-36160 regression-Mailing List, Vendor Advisory
- DSA-4982-Third Party Advisory
- [httpd-users] 20211019 [users@httpd] Regarding CVE-2021-40438-Mailing List, Vendor Advisory
- [httpd-users] 20211019 Re: [users@httpd] Regarding CVE-2021-40438-Mailing List, Vendor Advisory
- https://www.tenable.com/security/tns-2021-17
- 20211124 Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021-Third Party Advisory
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf
- GLSA-202208-20-
Keywords