CVE-2022-36760

Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-36760.json
Published
2023-01-17T20:15:00Z
Modified
2023-01-30T22:06:31.261155Z
Details

Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in modproxyajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.

References

Affected packages

Alpine:v3.14 / apache2

apache2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.4.55-r0

Affected versions

Alpine:v3.15 / apache2

apache2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.4.55-r0

Affected versions

2.*

2.2.16-r0
2.2.16-r1
2.2.16-r2
2.2.16-r3
2.2.17-r0
2.2.17-r1
2.2.17-r2
2.2.17-r3
2.2.17-r4
2.2.17-r5
2.2.20-r0
2.2.21-r0
2.2.21-r1
2.2.21-r2
2.2.21-r3
2.2.22-r0
2.2.22-r1
2.4.10-r0
2.4.12-r0
2.4.12-r1
2.4.12-r2
2.4.12-r3
2.4.12-r4
2.4.16-r0
2.4.17-r0
2.4.17-r1
2.4.17-r2
2.4.17-r3
2.4.17-r4
2.4.17-r5
2.4.17-r6
2.4.17-r7
2.4.18-r0
2.4.18-r1
2.4.18-r2
2.4.20-r0
2.4.20-r1
2.4.20-r2
2.4.23-r0
2.4.23-r1
2.4.23-r10
2.4.23-r2
2.4.23-r3
2.4.23-r4
2.4.23-r5
2.4.23-r6
2.4.23-r7
2.4.23-r8
2.4.23-r9
2.4.25-r0
2.4.25-r1
2.4.26-r0
2.4.27-r0
2.4.27-r1
2.4.27-r2
2.4.28-r0
2.4.29-r0
2.4.29-r1
2.4.3-r0
2.4.3-r1
2.4.3-r2
2.4.33-r0
2.4.33-r1
2.4.34-r0
2.4.35-r0
2.4.37-r0
2.4.37-r1
2.4.38-r0
2.4.38-r1
2.4.38-r2
2.4.39-r0
2.4.4-r0
2.4.4-r1
2.4.41-r0
2.4.43-r0
2.4.46-r0
2.4.46-r1
2.4.46-r2
2.4.46-r3
2.4.48-r0
2.4.48-r1
2.4.48-r2
2.4.49-r1
2.4.50-r0
2.4.51-r0
2.4.51-r1
2.4.52-r1
2.4.53-r1
2.4.54-r1
2.4.6-r0
2.4.6-r1
2.4.6-r2
2.4.6-r3
2.4.6-r4
2.4.7-r0
2.4.9-r0
2.4.9-r1

Alpine:v3.16 / apache2

apache2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.4.55-r0

Affected versions

2.*

2.2.16-r0
2.2.16-r1
2.2.16-r2
2.2.16-r3
2.2.17-r0
2.2.17-r1
2.2.17-r2
2.2.17-r3
2.2.17-r4
2.2.17-r5
2.2.20-r0
2.2.21-r0
2.2.21-r1
2.2.21-r2
2.2.21-r3
2.2.22-r0
2.2.22-r1
2.4.10-r0
2.4.12-r0
2.4.12-r1
2.4.12-r2
2.4.12-r3
2.4.12-r4
2.4.16-r0
2.4.17-r0
2.4.17-r1
2.4.17-r2
2.4.17-r3
2.4.17-r4
2.4.17-r5
2.4.17-r6
2.4.17-r7
2.4.18-r0
2.4.18-r1
2.4.18-r2
2.4.20-r0
2.4.20-r1
2.4.20-r2
2.4.23-r0
2.4.23-r1
2.4.23-r10
2.4.23-r2
2.4.23-r3
2.4.23-r4
2.4.23-r5
2.4.23-r6
2.4.23-r7
2.4.23-r8
2.4.23-r9
2.4.25-r0
2.4.25-r1
2.4.26-r0
2.4.27-r0
2.4.27-r1
2.4.27-r2
2.4.28-r0
2.4.29-r0
2.4.29-r1
2.4.3-r0
2.4.3-r1
2.4.3-r2
2.4.33-r0
2.4.33-r1
2.4.34-r0
2.4.35-r0
2.4.37-r0
2.4.37-r1
2.4.38-r0
2.4.38-r1
2.4.38-r2
2.4.39-r0
2.4.4-r0
2.4.4-r1
2.4.41-r0
2.4.43-r0
2.4.46-r0
2.4.46-r1
2.4.46-r2
2.4.46-r3
2.4.48-r0
2.4.48-r1
2.4.48-r2
2.4.49-r1
2.4.50-r0
2.4.51-r0
2.4.51-r1
2.4.52-r1
2.4.53-r1
2.4.54-r1
2.4.6-r0
2.4.6-r1
2.4.6-r2
2.4.6-r3
2.4.6-r4
2.4.7-r0
2.4.9-r0
2.4.9-r1

Alpine:v3.17 / apache2

apache2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.4.55-r0

Affected versions

2.*

2.2.16-r0
2.2.16-r1
2.2.16-r2
2.2.16-r3
2.2.17-r0
2.2.17-r1
2.2.17-r2
2.2.17-r3
2.2.17-r4
2.2.17-r5
2.2.20-r0
2.2.21-r0
2.2.21-r1
2.2.21-r2
2.2.21-r3
2.2.22-r0
2.2.22-r1
2.4.10-r0
2.4.12-r0
2.4.12-r1
2.4.12-r2
2.4.12-r3
2.4.12-r4
2.4.16-r0
2.4.17-r0
2.4.17-r1
2.4.17-r2
2.4.17-r3
2.4.17-r4
2.4.17-r5
2.4.17-r6
2.4.17-r7
2.4.18-r0
2.4.18-r1
2.4.18-r2
2.4.20-r0
2.4.20-r1
2.4.20-r2
2.4.23-r0
2.4.23-r1
2.4.23-r10
2.4.23-r2
2.4.23-r3
2.4.23-r4
2.4.23-r5
2.4.23-r6
2.4.23-r7
2.4.23-r8
2.4.23-r9
2.4.25-r0
2.4.25-r1
2.4.26-r0
2.4.27-r0
2.4.27-r1
2.4.27-r2
2.4.28-r0
2.4.29-r0
2.4.29-r1
2.4.3-r0
2.4.3-r1
2.4.3-r2
2.4.33-r0
2.4.33-r1
2.4.34-r0
2.4.35-r0
2.4.37-r0
2.4.37-r1
2.4.38-r0
2.4.38-r1
2.4.38-r2
2.4.39-r0
2.4.4-r0
2.4.4-r1
2.4.41-r0
2.4.43-r0
2.4.46-r0
2.4.46-r1
2.4.46-r2
2.4.46-r3
2.4.48-r0
2.4.48-r1
2.4.48-r2
2.4.49-r1
2.4.50-r0
2.4.51-r0
2.4.51-r1
2.4.52-r0
2.4.53-r0
2.4.54-r0
2.4.54-r1
2.4.6-r0
2.4.6-r1
2.4.6-r2
2.4.6-r3
2.4.6-r4
2.4.7-r0
2.4.9-r0
2.4.9-r1