CVE-2021-40438

critical-risk

Published 2021-09-16

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.

Do I need to act?

94.4% chance of exploitation in next 30 days

EPSS score — higher than 6% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.0/10 Critical

NETWORK / HIGH complexity

Affected Products (20)

Rocky Linux

Enterprise Linux

Enterprise Linux Eus

Enterprise Linux For Arm 64

Enterprise Linux For Arm 64 Eus

Enterprise Linux For Ibm Z Systems

Enterprise Linux For Ibm Z Systems Eus

Enterprise Linux For Ibm Z Systems Eus S390X

Enterprise Linux For Power Big Endian

Enterprise Linux For Power Little Endian

Enterprise Linux For Power Little Endian Eus

Affected Vendors

Debian Redhat Apache Oracle Siemens Broadcom F5 Fedoraproject Netapp Tenable Resf

References (39)

Third Party Advisory https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf

Release Notes https://httpd.apache.org/security/vulnerabilities_24.html

Mailing List https://lists.apache.org/thread.html/r210807d0bb55f4aa6fbe1512be6bcc4dacd64e8494...

Mailing List https://lists.apache.org/thread.html/r2eb200ac1340f69aa22af61ab34780c531d1104379...

Mailing List https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a14...

Mailing List https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156...

Mailing List https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b318...

Mailing List https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c...

Mailing List https://lists.apache.org/thread.html/rf6954e60b1c8e480678ce3d02f61b8a78899778565...

Mailing List https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html

Release Notes https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://security.gentoo.org/glsa/202208-20

Third Party Advisory https://security.netapp.com/advisory/ntap-20211008-0004/

Broken Link https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-a...

Mailing List https://www.debian.org/security/2021/dsa-4982

Patch https://www.oracle.com/security-alerts/cpuapr2022.html

Patch https://www.oracle.com/security-alerts/cpujan2022.html

Third Party Advisory https://www.tenable.com/security/tns-2021-17

Third Party Advisory https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf

and 19 more references

/ 100

critical-risk

Severity 26/34 · High

Exploitability 27/34 · High

Exposure 29/34 · Critical