Apache.httpd.mod_http2.Null.Pointer.Dereference.DoS

description-logoDescription

This indicates an attack attempt against a Denial Of Service vulnerability in Apache httpd.
The vulnerability is caused by an error when the vulnerable software handles a HTTP request with malformed HTTP2 request. A remote attacker can exploit this to cause a denial of service condition on vulnerable systems.

affected-products-logoAffected Products

Apache Software Foundation httpd version 2.4.24
Apache Software Foundation httpd version 2.4.25

Impact logoImpact

Denial Of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://httpd.apache.org/security/vulnerabilities_24.html
https://httpd.apache.org/security/vulnerabilities_22.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)