WEB Apache HTTP Server Path traversal (CVE-2021-41773)

Rule ID

1139826

Severity

High

Description

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the expected document root.

Impact

Information disclosure

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

Reference

CVE-2021-41773

github

Keyword

N/A

Created At

2021/10/07

Updated At

2021/10/07

This website uses cookies to ensure you get the best experience on our website.

Learn more