CVE-2021-44790

Published Dec 20, 2021

Last updated a year ago

CVSS critical 9.8

Overview

Description: A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.
Source: security@apache.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

security@apache.org: CWE-787
nvd@nist.gov: CWE-787

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D91E7B1-C692-4ECB-BFDF-968D8F8A5832",
            "versionEndIncluding": "2.4.51"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A939B08-CFD8-44D6-B06A-71819E7EFF21",
            "versionEndExcluding": "5.20.0",
            "versionStartIncluding": "5.16.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2AD8797-A70D-4FC7-8A7B-1EF9F43AB4DF",
            "versionEndIncluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBE1A019-7BB6-4226-8AC4-9D6927ADAEFA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B98BAEB2-A540-4E8A-A946-C4331B913AFD"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8FBE260-E306-4215-80C0-D2D27CA43E0F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "676F28B8-F780-4441-8062-53E1D69200DF",
            "versionEndIncluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D164570-BB85-4090-B3C6-2CAB324BDAD6",
            "versionEndIncluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFC79B17-E9D2-44D5-93ED-2F959E7A3D43"
          },
          {
            "criteria": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD04BEE5-E9A8-4584-A68C-0195CE9C402C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4"
          },
          {
            "criteria": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F69B9A5-F21B-4904-9F27-95C0F7A628E3"
          },
          {
            "criteria": "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3E503FB-6279-4D4A-91D8-E237ECF9D2B0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1F4BF7F-90D4-4668-B4E6-B06F4070F448"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F441A43-1669-478D-9EC8-E96882DE4F9F"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D425C653-37A2-448C-BF2F-B684ADB08A26"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A54D63B7-B92B-47C3-B1C5-9892E5873A98"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3456176F-9185-4EE2-A8CE-3D989D674AB7"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-005:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D337EE21-2F00-484D-9285-F2B0248D7A19"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-006:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "012052B5-9AA7-4FD3-9C80-5F615330039D"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-007:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50F21A3C-0AC3-48C5-A4F8-5A7B478875B4"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-008:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E974DC6-F7D9-4389-9AF9-863F6E419CE6"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "156A6382-2BD3-4882-90B2-8E7CF6659E17"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20A2FDB2-6712-406A-9896-C0B44508B07D"
          },
          {
            "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49F537A0-DC42-4176-B22F-C80D179DD99D"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BD2A211-4E62-40BF-9BA0-5239FA6F0AF8",
            "versionEndExcluding": "10.15.7"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09A6345C-D813-43BA-B12E-789C80653F86",
            "versionEndExcluding": "11.6.6",
            "versionStartIncluding": "11.0"
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35154201-43EA-4C22-B0BA-D1A24C46D320",
            "versionEndExcluding": "12.4",
            "versionStartIncluding": "12.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References