CVE-2021-44224

Published Dec 20, 2021
Last updated a year ago
CVSS high 8.2
Overview

Description: A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
Source: security@apache.org
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 8.2
Impact score: 4.2
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-476
security@apache.org: CWE-476
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F280AFE0-EB05-4ABF-85A7-9518AD485C49",
            "versionEndExcluding": "2.4.52",
            "versionStartIncluding": "2.4.7"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3304C5DC-0353-4AC8-884E-2154C9224BE9",
            "versionEndExcluding": "5.20.0",
            "versionStartIncluding": "5.14.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "161BA9E6-265F-4245-8053-5734333322E5",
            "versionEndExcluding": "202201.1",
            "versionStartIncluding": "5.16.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02712DD6-D944-4452-8015-000B9851D257",
            "versionEndExcluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3517A27-E6EE-497C-9996-F78171BBE90F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBE1A019-7BB6-4226-8AC4-9D6927ADAEFA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B98BAEB2-A540-4E8A-A946-C4331B913AFD"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8FBE260-E306-4215-80C0-D2D27CA43E0F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "274BCA96-2E6A-4B77-B69E-E2093A668D28",
            "versionEndExcluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D4B738B-08CF-44F6-A939-39F5BEAF03B2",
            "versionEndExcluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:http_server:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E290BD43-5AB2-4641-B4AC-BC99FFBF7833"
          },
          {
            "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFC79B17-E9D2-44D5-93ED-2F959E7A3D43"
          },
          {
            "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD04BEE5-E9A8-4584-A68C-0195CE9C402C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F69B9A5-F21B-4904-9F27-95C0F7A628E3"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89161D20-EB9C-4EC0-8D82-75B27CE49264"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1F4BF7F-90D4-4668-B4E6-B06F4070F448"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F441A43-1669-478D-9EC8-E96882DE4F9F"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D425C653-37A2-448C-BF2F-B684ADB08A26"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A54D63B7-B92B-47C3-B1C5-9892E5873A98"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3456176F-9185-4EE2-A8CE-3D989D674AB7"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-005:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D337EE21-2F00-484D-9285-F2B0248D7A19"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-006:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "012052B5-9AA7-4FD3-9C80-5F615330039D"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-007:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50F21A3C-0AC3-48C5-A4F8-5A7B478875B4"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-008:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E974DC6-F7D9-4389-9AF9-863F6E419CE6"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "156A6382-2BD3-4882-90B2-8E7CF6659E17"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20A2FDB2-6712-406A-9896-C0B44508B07D"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49F537A0-DC42-4176-B22F-C80D179DD99D"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BD2A211-4E62-40BF-9BA0-5239FA6F0AF8",
            "versionEndExcluding": "10.15.7"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09A6345C-D813-43BA-B12E-789C80653F86",
            "versionEndExcluding": "11.6.6",
            "versionStartIncluding": "11.0"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56A8A170-44A7-4334-88B0-CB4413E28E53",
            "versionEndExcluding": "12.4",
            "versionStartIncluding": "12.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
