Threat Encyclopedia

Apache.httpd.mod_lua.req_parsebody.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Apache Software Foundation httpd.
The vulnerability is due to use of uninitialized memory when processing a request. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitation could lead to a denial of service condition.

affected-products-logoAffected Products

Apache Software Foundation httpd prior to 2.4.53

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://httpd.apache.org/security/vulnerabilities_24.html#2.4.53

CVE References

CVE-2022-22719