CVE-2021-30641

Summary

Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF'

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache HTTP Server2.4.46affected
Apache Software FoundationApache HTTP Server2.4.43affected
Apache Software FoundationApache HTTP Server2.4.41affected
Apache Software FoundationApache HTTP Server2.4.39affected

Weaknesses

  • Unexpected URL matching with 'MergeSlashes OFF'

ADP Enrichment

CVE Program Container

Additional References

References