Description

Apache mod_proxy allows an unauthenticated attacker to send arbitrary values in the request uri-path and interact with internal network resources which is otherwise not accessible externally. An attacker may use this feature to perform SSRF (server-side request forgery) attacks on the server.

Remediation

Upgrade to the latest version of Apache HTTP Server

References

CVE-2021-40438

Building a POC for CVE-2021-40438

Related Vulnerabilities

WordPress Plugin Google Forms Server-Side Request Forgery (0.91)

MobileIron Log4Shell RCE

Flex BlazeDS AMF Deserialization RCE

Hasura GraphQL API without authentication

SAML Consumer Service XSLT injection

Severity

High

Classification

CVE-2021-40438 CWE-918 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Tags

Acumonitor SSRF