Apache HTTP Server Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Servers - Web Servers
Multiple vulnerabilities were identified in Apache HTTP Server. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Information Disclosure
- Cross-Site Scripting
- Security Restriction Bypass
System / Technologies affected
- Apache HTTP Server versions prior to 2.4.54
For IBM Products
For detail, please refer to the links below:
https://www.ibm.com/support/pages/node/6595149
For F5 Products
For detail, please refer to the links below:
https://support.f5.com/csp/article/K21192332
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Apache HTTP Server versions 2.4.54
For IBM Products
For detail, please refer to the links below:
https://www.ibm.com/support/pages/node/6595149
For F5 Products
For detail, please refer to the links below:
https://support.f5.com/csp/article/K21192332
Vulnerability Identifier
- CVE-2022-26377
- CVE-2022-28330
- CVE-2022-28614
- CVE-2022-28615
- CVE-2022-29404
- CVE-2022-30522
- CVE-2022-30556
- CVE-2022-31813
沒有留言:
發佈留言