Description

Apache mod_proxy allows an unauthenticated attacker to send arbitrary values in the request uri-path and interact with internal network resources which is otherwise not accessible externally. An attacker may use this feature to perform SSRF (server-side request forgery) attacks on the server.

Remediation

Upgrade to the latest version of Apache HTTP Server

References

CVE-2021-40438

Building a POC for CVE-2021-40438

Related Vulnerabilities

Ubiquiti Unifi Log4Shell RCE

XML External Entity Injection via external file

Unauthenticated Remote Code Execution via JSONWS in Liferay 7.2.0 CE GA1

GitLab ExifTool RCE (CVE-2021-22205)

ImageMagick remote code execution

Severity

High

Classification

CVE-2021-40438 CWE-918 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Tags

Acumonitor SSRF