Security Advisory

CVE-2021-39275

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-16 14:40:22

Last updated 2024-08-04 02:06:42

Assigner apache

State PUBLISHED

Description

ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.

← Browse all CVEs View on cve.org ↗