CVE-2021-44224
CWE-476 — NULL Pointer DereferenceCWE-918 — Server-Side Request Forgery (SSRF)15 documents10 sources
Severity
8.2HIGH
EPSS
11.0%
top 6.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 20
Latest updateMay 16
Description
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:HExploitability: 3.9 | Impact: 4.2
Affected Packages13 packages
Also affects: Debian Linux 10.0, 11.0, Fedora 34, 35, 36
Patches
🔴Vulnerability Details
5GHSA▶
GHSA-92ww-hwmg-qq7p: A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixin↗2022-02-08
OSV▶
CVE-2021-44224: A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixin↗2021-12-20
CVEList▶
Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier↗2021-12-20
📋Vendor Advisories
9Oracle▶
Oracle Oracle Fusion Middleware Risk Matrix: SSL Module (Apache HTTP Server) — CVE-2021-44224↗2022-04-15