Apache HTTP Server versions 2.4.41 to 2.4.46 mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted requests using both Content-Length and Transfer-Encoding headers, leading to a Denial of Service
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2021-06-10T07:10:21
Updated: 2024-08-04T12:32:14.669Z
Reserved: 2020-06-08T00:00:00
Link: CVE-2020-13950
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-06-10T07:15:07.440
Modified: 2023-11-07T03:17:03.200
Link: CVE-2020-13950
Redhat