Improper Input Validation in Apache HTTP Server mod_cluster Affecting Load Balancer
CVE-2016-8612
4.3MEDIUM
Summary
The Apache HTTP Server mod_cluster component prior to version 2.4.23 is susceptible to an improper input validation issue within its protocol parsing logic. This vulnerability can lead to a segmentation fault in the httpd process, potentially disrupting service and rendering the server temporarily unavailable. It is crucial for users and administrators to apply the latest updates to ensure their systems remain secure against such vulnerabilities.
Affected Version(s)
mod_cluster httpd 2.4.23
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved