CVE-2021-40438 log

Source
Severity High
Remote Yes
Type Url request injection
Description
In Apache HTTP Server before version 2.4.49, a crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user.
Group Package Affected Fixed Severity Status Ticket
AVG-2289 apache 2.4.48-1 2.4.49-1 High Fixed
References
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-40438