Skip to main content

Apache HTTP Server Multiple Vulnerabilities

Last Update Date: 17 May 2022 Release Date: 15 Mar 2022 6247 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Multiple vulnerabilities were identified in Apache HTTP Server. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and security restriction bypass on the targeted system.

 

[Updated on 2022-04-25]

Added QNAP products to the "System / Technologies affected" and "Solution" sections

 

[Updated on 2022-05-17]

Added F5 products to the "System / Technologies affected" and "Solution" sections


Impact

  • Denial of Service
  • Security Restriction Bypass

System / Technologies affected

  • Apache HTTP Server versions prior to 2.4.53

[Updated on 2022-04-25]

 

For QNAP Products

For detail, please refer to the links below:

https://www.qnap.com/en/security-advisory/qsa-22-11

 

[Updated on 2022-05-17]

 

For F5 Products

For detail, please refer to the links below:

https://support.f5.com/csp/article/K67090077


Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

  • Apache HTTP Server versions 2.4.53

[Updated on 2022-04-25]

 

For QNAP Products

For detail, please refer to the links below:

https://www.qnap.com/en/security-advisory/qsa-22-11

 

[Updated on 2022-05-17]

 

For F5 Products

For detail, please refer to the links below:

https://support.f5.com/csp/article/K67090077


Vulnerability Identifier


Source


Related Link