216.73.217.22

CVE-2021-42013

· Published 03/11/2021 01:00 · Modified 20/12/2025 19:42 · Author: Cybersecurity and Infrastructure Security Agency

Labels: CVE-2021-42013

Essential information

Published
03/11/2021 01:00
Modified
20/12/2025 19:42
Author
Cybersecurity and Infrastructure Security Agency
Creator
Cybersecurity and Infrastructure Security Agency
CISA KEV
Yes
CWE

Description

Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories configured by Alias-like directives are not under default require all denied or if CGI scripts are enabled. This CVE ID resolves an incomplete patch for CVE-2021-41773.

NVD status

NVD
View on NVD

Related entities

Attack reports, intrusion sets, malwares, attack patterns and indicators linked to this vulnerability.

Attack reports (1)