Apache HTTP Server is an open source web server from the Apache Foundation. The server is fast, reliable, and extensible via a simple API. buffer overflow vulnerability exists in Apache HTTP Server versions 2.4.48 and earlier, which stems from the possibility that ap_escape_quotes() may write content outside of the buffer when given malicious input. An attacker could exploit this vulnerability to write malicious content and execute it.

CPENameOperatorVersion
apache http serverle2.4.48

CPE	Name	Operator	Version
	apache http server	le	2.4.48

ibm 19

veracode 1

cbl_mariner 2

httpd 1

f5 1

nessus 54

osv 10

alpinelinux 1

prion 1

debiancve 1

ubuntucve 1

cloudlinux 2

cve 1

redhatcve 1

openvas 35

cvelist 1

nvd 1

photon 3

oraclelinux 4

rocky 1

almalinux 1

redhat 5

ubuntu 4

debian 2

ics 1

suse 2

centos 1

altlinux 2

mageia 1

freebsd 1

cisco 1

slackware 1

kaspersky 1

rosalinux 2

amazon 2

fedora 2

gentoo 1

oracle 3

ibm

Security Bulletin: Vulnerability in IBM HTTP Server used by WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2021-39275)

2021-10-01 02:49:10

Security Bulletin: IBM Aspera Orchestrator affected by buffer overflow vulnerability (CVE-2021-39275)

2023-02-02 17:37:31

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Netcool Configuration Manager (CVE-2021-39275)

2021-10-18 06:26:32

veracode

Denial Of Service (DoS)

2021-09-20 15:14:40

cbl_mariner

CVE-2021-39275 affecting package httpd 2.4.46-6

2021-10-15 04:46:31

CVE-2021-39275 affecting package httpd for versions less than 2.4.52-1

2022-04-09 06:51:57

httpd

Apache Httpd < 2.4.49 : ap_escape_quotes buffer overflow

2021-09-16 00:00:00

K20622400 : Apache HTTP server vulnerability CVE-2021-39275

2021-10-25 00:00:00

nessus

SUSE SLES11 Security Update : apache2 (SUSE-SU-2021:14811-1)

2021-09-28 00:00:00

Photon OS 3.0: Httpd PHSA-2021-3.0-0312

2021-10-11 00:00:00

Oracle Linux 7 : httpd (ELSA-2021-9619)

2021-12-16 00:00:00

osv

CVE-2021-39275

2021-09-16 15:15:07

BIT-apache-2021-39275

2024-03-06 10:55:11

Moderate: httpd:2.4 security update

2022-03-15 09:10:44

alpinelinux

CVE-2021-39275

2021-09-16 15:15:07

prion

Input validation

2021-09-16 15:15:00

debiancve

CVE-2021-39275

2021-09-16 15:15:07

ubuntucve

CVE-2021-39275

2021-09-16 00:00:00

cloudlinux

Fix of CVE: CVE-2021-39275

2021-10-11 15:13:18

Fix of CVE: CVE-2021-39275

2021-10-20 15:53:36

cve

CVE-2021-39275

2021-09-16 15:15:07

redhatcve

CVE-2021-39275

2021-09-16 20:45:55

openvas

SUSE: Security Advisory (SUSE-SU-2021:14811-1)

2021-09-28 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:3299-1)

2021-10-07 00:00:00

Debian: Security Advisory (DLA-2776-1)

2021-10-03 00:00:00

cvelist

CVE-2021-39275 ap_escape_quotes buffer overflow

2021-09-16 14:40:22

nvd

CVE-2021-39275

2021-09-16 15:15:07

photon

Critical Photon OS Security Update - PHSA-2021-0444

2021-10-19 00:00:00

Critical Photon OS Security Update - PHSA-2021-0406

2021-10-20 00:00:00

Critical Photon OS Security Update - PHSA-2021-3.0-0312

2021-10-09 00:00:00

oraclelinux

httpd:2.4 security update

2022-01-06 00:00:00

httpd:2.4 security update

2022-03-16 00:00:00

httpd security update

2021-12-16 00:00:00

rocky

httpd:2.4 security update

2022-03-15 09:10:44

almalinux

Moderate: httpd:2.4 security update

2022-03-15 09:10:44

redhat

(RHSA-2022:0891) Moderate: httpd:2.4 security update

2022-03-15 09:10:44

(RHSA-2022:0143) Important: httpd security update

2022-01-17 08:16:34

(RHSA-2022:7143) Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

2022-10-26 20:05:14

ubuntu

Apache HTTP Server vulnerabilities

2021-09-27 00:00:00

Apache HTTP Server regression

2021-09-28 00:00:00

Apache HTTP Server regression

2021-09-28 00:00:00

debian

[SECURITY] [DLA 2776-1] apache2 security update

2021-10-02 16:07:56

[SECURITY] [DSA 4982-1] apache2 security update

2021-10-08 20:56:04

ics

Siemens Apache HTTP Server (Update A)

2022-10-13 12:00:00

suse

Security update for apache2 (important)

2021-10-26 00:00:00

Security update for apache2 (important)

2021-11-02 00:00:00

centos

httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update

2022-01-25 17:31:14

altlinux

Security fix for the ALT Linux 10 package apache2 version 1:2.4.49-alt1

2021-10-04 00:00:00

Security fix for the ALT Linux 9 package apache2 version 1:2.4.49-alt1

2021-09-23 00:00:00

mageia

Updated apache packages fix security vulnerability

2021-09-23 07:49:29

freebsd

Apache httpd -- multiple vulnerabilities

2021-09-16 00:00:00

cisco

Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021

2021-11-24 16:00:00

slackware

[slackware-security] httpd

2021-09-17 04:22:20

kaspersky

KLA12370 Multiple vulnerabilities in Apache HTTP Server

2021-09-16 00:00:00

rosalinux

Advisory ROSA-SA-2023-2158

2023-04-25 11:30:17

Advisory ROSA-SA-2023-2160

2023-04-25 12:02:31

amazon

Important: httpd

2021-10-15 07:57:00

Important: httpd24

2021-10-15 07:52:00

fedora

[SECURITY] Fedora 35 Update: httpd-2.4.49-1.fc35

2021-09-24 20:56:12

[SECURITY] Fedora 34 Update: httpd-2.4.49-1.fc34

2021-09-20 13:58:04

gentoo

Apache HTTPD: Multiple Vulnerabilities

2022-08-14 00:00:00

oracle

Oracle Critical Patch Update Advisory - October 2022

2022-10-18 00:00:00

Oracle Critical Patch Update Advisory - January 2022

2022-01-18 00:00:00

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.006 Low

EPSS

Percentile

79.5%

JSON

Related for CNVD-2022-03225