Apache update
1710Warning Date
Severity Level
Warning Number
Target Sector
5 October, 2021
● Medium
2021-3615
All
Description:
Apache has released a security update to address several vulnerabilities in the following versions:
- Apache HTTP Server 2.4.48 and earlier
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Request splitting
- Cache poisoning
- Denial of service attack (DoS)
Best practice and Recommendations:
The CERT team encourages users to review Apache security advisory and apply the updates of the affected versions when the patch is released: