Apache – CVE-2021-26690

Description

Kayran has detected that the version of Apache HTTP Server being used is vulnerable to a NULL Pointer Dereference vulnerability. Also known as CVE-2021-26690.

By using a specially crafted Cookie header handled by mod_session that can cause a NULL pointer dereference that could lead to crashes or an exit.
That may lead to a possible Denial Of Service (DoS) attack against your assets.

This will cause a decrease in performance and also for interruptions in the availability of resources.

Recommendation

To fix CVE-2021-26690, upgrade the version of Apache Server being used to 2.4.48.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690

https://cwe.mitre.org/data/definitions/476.html

< Return to all Vulnerabilities

Blue Team

We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we

Read More »

The Dark Web

Let’s talk about the darker and more mysterious side of the internet, also known as The Dark Web. You’ve probably heard about it, whether it’s

Read More »

Using VPN

What is a VPN? Why should someone be using VPN? Which Problems does is solve? and what is the advantages and disadvantages of it? Let’s

Read More »