4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.248 Low
EPSS
Percentile
96.7%
The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used
with mod_proxy_balancer in certain configurations, allows remote attackers
to cause a denial of service (temporary “error state” in the backend
server) via a malformed HTTP request.