Apache – CVE-2022-22719


Kayran has detected that the Version of Apache HTTP Server being used use a ‘mod_lua’ of an uninitialized value in ‘r:parsebody’.
CVE-2022-22719 is categorized as a ‘Improper Initialization’ vulnerability (CWE-665).
Improper Initialization occur when the software does not initialize or incorrectly initializes a resource.

That might leave resources in an unexpected state when it’s being accessed or used.

By crafting a request, its body can cause a ‘read’ to a random memory area which could cause the entire process to crash.
It could lead to a decrease in performance and interruptions in the availability of resources.


To fix CVE-2022-22719, upgrade the version of Apache HTTP Server being used to 2.4.53.




< Return to all Vulnerabilities

Crossing Scripts – XSS

Injections. SQL Injections. Cross-site Scripting (hence the amazing title “Crossing Scripts – XSS”). There all sorts of Injection-Based attacks, if you want to read about

Read More »

Red Team

You’ve probably heard that there are teams in the Cyber field called Red Team and Blue Team. Let’s talk about the red one, shall we?

Read More »