---

CVE-2022-26377 - log back

CVE-2022-26377 edited at 08 Jun 2022 11:08:38
References	- https://seclists.org/oss-sec/2022/q2/180

CVE-2022-26377 edited at 08 Jun 2022 11:07:10
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Description	+ Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP + Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache + HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.
References	+ https://seclists.org/oss-sec/2022/q2/180
Notes

CVE-2022-26377 created at 08 Jun 2022 11:05:02