Description

Apache mod_proxy allows an unauthenticated attacker to send arbitrary values in the request uri-path and interact with internal network resources which is otherwise not accessible externally. An attacker may use this feature to perform SSRF (server-side request forgery) attacks on the server.

Remediation

Upgrade to the latest version of Apache HTTP Server

References

CVE-2021-40438

Building a POC for CVE-2021-40438

Related Vulnerabilities

Apache Struts2 remote code execution vulnerability

WordPress Plugin JSM file_get_contents() Shortcode Server-Side Request Forgery (2.7.0)

WordPress Plugin All in One Social Lite Server-Side Request Forgery (1.0)

WordPress Plugin RSVPMaker Server-Side Request Forgery (8.7.2)

WordPress Plugin Craw Data Server-Side Request Forgery (1.0.0)

Severity

High

Classification

CVE-2021-40438 CWE-918 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Tags

Acumonitor SSRF