Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMDF16AB7A179048958DC2086B0A71FDB338ECAFCD8280E68E66D57BBC42D83CEC
HistoryDec 04, 2022 - 12:13 a.m.

Security Bulletin: Vulnerabilities in Apache HTTP (CVE-2021-33193 and CVE-2021-44224) affects Power HMC

2022-12-0400:13:21
www.ibm.com
22
apache http
ibm power hmc
vulnerabilities
cve-2021-33193
cve-2021-44224
web server
remediation
power hmc v10.1.1010.0
power hmc v9.2.950.0

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

EPSS

0.312

Percentile

97.1%

JSON

Summary

Apache HTTP webserver is used by IBM Power Hardware Management Console (HMC) for accepting https request and transfer to and fro to internal applications. This bulletin provides a remediation for the impacted vulnerabilities, CVE-2021-33193 and CVE-2021-44224 by upgrading IBM Power Hardware Management Console (HMC) respective PTF and thus addressing the exposure to the vulnerability.

Vulnerability Details

CVEID:CVE-2021-33193
**DESCRIPTION:**Apache HTTP Server is vulnerable to HTTP request splitting attacks, caused by improper input validation in HTTP/2 message processing. A remote attacker could exploit this vulnerability to inject arbitrary HTTP request and cause the browser to send 2 HTTP requests, once the URL is clicked. This would allow the attacker to perform further attacks, such as Web cache poisoning or cross-site scripting.
CVSS Base score: 6.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/207923 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)

CVEID:CVE-2021-44224
**DESCRIPTION:**Apache HTTP Server is vulnerable to a denial of service or server-side request forgery. By sending a specially crafted URI to httpd configured as a forward proxy, an attacker could exploit this vulnerability to cause a NULL pointer dereference. By sending a specially crafted URI to configurations mixing forward and reverse proxy declarations, an attacker could allow for requests to be directed to a declared Unix Domain Socket endpoint.
CVSS Base score: 8.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/215719 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
HMC V10.1.1010.0 V10.1.1010.0 and later
HMC V9.2.950.0 V9.2.950.0 and later

Remediation/Fixes

The following fixes are available on IBM Fix Central at: <http://www-933.ibm.com/support/fixcentral/&gt;

Product

|

VRMF

|

APAR

|

Remediation/Fix

—|—|—|—

Power HMC

|

V9.2.950.0 SP3 ppc

|

MB04373

|

MH01944

Power HMC

|

V9.2.950.0 SP3 x86

|

MB04372

|

MH01943

Power HMC

|

V10.1.1020.0 SP1 ppc

|

MB04363

|

MF70302

Power HMC

|

V10.1.1020.0 SP1 x86

|

MB04362

|

MF70301

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmhardware_management_consoleMatchany
OR
ibmhardware_management_consoleMatchany
VendorProductVersionCPE
ibmhardware_management_consoleanycpe:2.3:a:ibm:hardware_management_console:any:*:*:*:*:*:*:*

Related

rocky 1
oraclelinux 2
nessus 52
osv 15
rosalinux 1
redhat 3
almalinux 1
cbl_mariner 4
openvas 40
ibm 11
nvd 2
suse 3
veracode 2
cvelist 2
redhatcve 2
prion 2
cve 2
f5 2
debiancve 2
cnvd 1
ubuntucve 2
photon 5
hackerone 1
alpinelinux 2
httpd 2
checkpoint_advisories 1
amazon 4
fortinet 1
mageia 2
fedora 6
freebsd 2
altlinux 4
slackware 2
debian 3
cisa 1
redos 1
ubuntu 5
kaspersky 2
threatpost 1
cisco 1
thn 1
rocky
rocky
httpd:2.4 security and bug fix update
2022-05-10 08:07:40
oraclelinux
oraclelinux
httpd:2.4 security and bug fix update
2022-05-17 00:00:00
httpd:2.4 security update
2022-04-13 00:00:00
nessus
nessus
CentOS 8 : httpd:2.4 (CESA-2022:1915)
2022-05-10 00:00:00
AlmaLinux 8 : httpd:2.4 (ALSA-2022:1915)
2022-05-12 00:00:00
Oracle Linux 8 : httpd:2.4 (ELSA-2022-1915)
2022-05-18 00:00:00
osv
osv
Moderate: httpd:2.4 security and bug fix update
2022-05-10 08:07:40
Moderate: httpd:2.4 security and bug fix update
2022-05-10 08:07:40
CVE-2021-33193
2021-08-16 08:15:11
rosalinux
rosalinux
Advisory ROSA-SA-2023-2155
2023-04-18 12:09:43
redhat
redhat
(RHSA-2022:1915) Moderate: httpd:2.4 security and bug fix update
2022-05-10 08:07:40
(RHSA-2022:7143) Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update
2022-10-26 20:05:14
(RHSA-2022:6753) Moderate: httpd24-httpd security and bug fix update
2022-09-29 13:20:41
almalinux
almalinux
Moderate: httpd:2.4 security and bug fix update
2022-05-10 08:07:40
cbl_mariner
cbl_mariner
CVE-2021-33193 affecting package httpd for versions less than 2.4.52-1
2022-04-09 06:51:57
CVE-2021-33193 affecting package httpd 2.4.46-6
2021-09-09 15:02:57
CVE-2021-44224 affecting package httpd 2.4.51-1
2022-01-10 03:59:19
openvas
openvas
openSUSE: Security Advisory for apache2 (openSUSE-SU-2021:1234-1)
2021-09-08 00:00:00
Apache HTTP Server 2.4.17 < 2.4.49 'mod_proxy' HTTP/2 Request Smuggling Vulnerability - Linux
2021-08-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2954-1)
2021-09-05 00:00:00
ibm
ibm
Security Bulletin: IBM Rational Build Forge 8.0.x is affected by Apache HTTP Server version used in it. (CVE-2021-44224)
2022-01-17 18:32:06
Security Bulletin: IBM Rational Build Forge 8.0.x is affected by Apache HTTP Server version used in it. (CVE-2021-33193)
2022-01-17 18:26:42
Security Bulletin: IBM Aspera Orchestrator affected by HTTP request splitting attack due to Apache HTTP Server vulnerability (CVE-2021-33193)
2023-02-02 20:39:06
nvd
nvd
CVE-2021-44224
2021-12-20 12:15:07
CVE-2021-33193
2021-08-16 08:15:11
suse
suse
Security update for apache2 (important)
2021-09-03 00:00:00
Security update for apache2 (important)
2021-09-07 00:00:00
Security update for apache2 (important)
2022-03-28 00:00:00
veracode
veracode
Privilege Escalation
2021-08-13 01:56:49
Denial Of Service (DoS)
2021-12-21 08:11:59
cvelist
cvelist
CVE-2021-33193 Request splitting via HTTP/2 method injection and mod_proxy
2021-08-16 00:00:00
CVE-2021-44224 Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier
2021-12-20 11:20:13
redhatcve
redhatcve
CVE-2021-33193
2021-08-12 02:03:43
CVE-2021-44224
2021-12-21 17:04:16
prion
prion
Input validation
2021-08-16 08:15:00
Design/Logic Flaw
2021-12-20 12:15:00
cve
cve
CVE-2021-33193
2021-08-16 08:15:11
CVE-2021-44224
2021-12-20 12:15:07
f5
f5
K16090693 : Apache HTTP server vulnerability CVE-2021-44224
2021-12-27 00:00:00
K94828628 : Apache mod_proxy HTTP/2 vulnerability CVE-2021-33193
2021-09-13 00:00:00
debiancve
debiancve
CVE-2021-44224
2021-12-20 12:15:07
CVE-2021-33193
2021-08-16 08:15:11
cnvd
cnvd
Apache HTTP Server code issue vulnerability
2021-12-24 00:00:00
ubuntucve
ubuntucve
CVE-2021-44224
2021-12-20 00:00:00
CVE-2021-33193
2021-08-16 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0305
2021-09-24 00:00:00
Important Photon OS Security Update - PHSA-2021-3.0-0305
2021-09-24 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0435
2021-09-21 00:00:00
hackerone
hackerone
Internet Bug Bounty: Request line injection via HTTP/2 in Apache mod_proxy
2021-11-04 13:39:46
alpinelinux
alpinelinux
CVE-2021-33193
2021-08-16 08:15:11
CVE-2021-44224
2021-12-20 12:15:07
httpd
httpd
Apache Httpd < 2.4.49 : Request splitting via HTTP/2 method injection and mod_proxy
2021-05-11 00:00:00
Apache Httpd < 2.4.52 : Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier
2021-12-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache httpd mod_proxy NULL Pointer Dereference (CVE-2021-44224)
2022-11-21 00:00:00
amazon
amazon
Important: httpd
2022-01-18 21:37:00
Important: httpd24
2022-01-18 20:14:00
Important: httpd24
2021-10-15 07:52:00
fortinet
fortinet
Multiple Apache Vulnerabilities fixed in 2.4.52
2021-12-28 00:00:00
mageia
mageia
Updated apache packages fix security vulnerabilities
2021-12-22 02:27:37
Updated apache packages fix security vulnerability
2021-09-23 07:49:29
fedora
fedora
[SECURITY] Fedora 35 Update: httpd-2.4.50-1.fc35
2021-10-29 23:19:42
[SECURITY] Fedora 34 Update: httpd-2.4.50-1.fc34
2021-10-07 17:19:23
[SECURITY] Fedora 35 Update: httpd-2.4.52-1.fc35
2021-12-24 01:26:46
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2021-12-20 00:00:00
Apache httpd -- multiple vulnerabilities
2021-09-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 1:2.4.52-alt1
2021-12-27 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.52-alt1
2022-02-04 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.49-alt1
2021-09-23 00:00:00
slackware
slackware
[slackware-security] httpd
2021-12-20 20:00:56
[slackware-security] httpd
2021-09-17 04:22:20
debian
debian
[SECURITY] [DSA 5035-1] apache2 security update
2022-01-04 16:38:55
[SECURITY] [DLA 2907-1] apache2 security update
2022-02-01 21:18:26
[SECURITY] [DLA 3351-1] apache2 security update
2023-03-03 16:35:17
cisa
cisa
Apache Releases Security Update for HTTP Server
2021-12-22 00:00:00
redos
redos
ROS-20211223-04
2021-12-23 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2022-01-10 00:00:00
Apache HTTP Server vulnerabilities
2022-01-06 00:00:00
Apache HTTP Server regression
2021-09-28 00:00:00
kaspersky
kaspersky
KLA12400 Multiple vulnerabilities in Apache HTTP Server
2021-12-20 00:00:00
KLA12370 Multiple vulnerabilities in Apache HTTP Server
2021-09-16 00:00:00
threatpost
threatpost
Critical Apache HTTPD Server Bugs Could Lead to RCE, DoS
2021-12-22 17:59:55
cisco
cisco
Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021
2021-11-24 16:00:00
thn
thn
CISA, FBI and NSA Publish Joint Advisory and Scanner for Log4j Vulnerabilities
2021-12-23 12:09:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

EPSS

0.312

Percentile

97.1%

JSON
Related for DF16AB7A179048958DC2086B0A71FDB338ECAFCD8280E68E66D57BBC42D83CEC
rocky1oraclelinux2nessus52osv15rosalinux1redhat3almalinux1cbl_mariner4openvas40ibm11nvd2suse3veracode2cvelist2redhatcve2prion2cve2f52debiancve2cnvd1ubuntucve2photon5hackerone1alpinelinux2httpd2checkpoint_advisories1amazon4fortinet1mageia2fedora6freebsd2altlinux4slackware2debian3cisa1redos1ubuntu5kaspersky2threatpost1cisco1thn1