Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability - CVE-2021-40438 - Vulnerability Database

Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability - CVE-2021-40438

Critical

Reference: CVE-2021-40438

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-40438

Title: Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability

Overview:

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.