Description
The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.
Remediation
References
Related Vulnerabilities
Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26882)
WordPress Plugin Elementor Pro Security Bypass (3.11.6)
PHP Improper Input Validation Vulnerability (CVE-2020-7071)
WordPress Plugin Relevanssi-A Better Search Cross-Site Scripting (3.3.7.1)
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2022-1434)