Apache – CVE-2021-34798

Home » Blog » Apache – CVE-2021-34798

Description

Kayran has detected that the version of the Apache HTTP Server being used is vulnerable to NULL Pointer Dereference. Also known as CVE-2021-34798.

Malformed requests may cause the server to dereference a NULL pointer.
A NULL pointer dereference in the httpd will allow a remote attacker, without authentication, to crash httpd by providing malformed HTTP requests.

This will greatly impact the system’s availability.

Severity/Score

CVSS Version 3.x – 7.5 High

Recommendation

To fix CVE-2021-34798, update the version of the Apache HTTP Server being used to 2.4.49 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34798

https://cwe.mitre.org/data/definitions/476.html

< Return to all Vulnerabilities

A leaking faucet – Data Leaks\Breaches

Imagine you’re running a 400 million dollar company, you got the company’s car, insurance and maybe even dental care! Now imagine that all the information

Information Disclosure – Self revealing our Secrets

Remember those tired Devs? Well, sometimes they tend to make mistakes, as mentioned before, but imagine, writing everything important to you on a wall visible

Enterprise Mobility – BYOD vs. CYOD

We know that “demarcation” of our Enterprise Mobility is very important in the field of Information Security especially when we talk about the devices being