CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
Percentile
97.4%
A resource consumption flaw was found in mod_deflate. If request body decompression was configured (using the “DEFLATE” input filter), a remote attacker could cause the server to consume significant memory and/or CPU resources. The use of request body decompression is not a common configuration.
Vendor | Product | Version | CPE |
---|---|---|---|
apache | apache_httpd | 2.2.27 | cpe:2.3:a:apache:apache_httpd:2.2.27:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.26 | cpe:2.3:a:apache:apache_httpd:2.2.26:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.25 | cpe:2.3:a:apache:apache_httpd:2.2.25:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.24 | cpe:2.3:a:apache:apache_httpd:2.2.24:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.23 | cpe:2.3:a:apache:apache_httpd:2.2.23:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.22 | cpe:2.3:a:apache:apache_httpd:2.2.22:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.21 | cpe:2.3:a:apache:apache_httpd:2.2.21:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.20 | cpe:2.3:a:apache:apache_httpd:2.2.20:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.19 | cpe:2.3:a:apache:apache_httpd:2.2.19:*:*:*:*:*:*:* |
apache | apache_httpd | 2.2.18 | cpe:2.3:a:apache:apache_httpd:2.2.18:*:*:*:*:*:*:* |