Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.44325}

epss

{'score': 0.44918}


cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2024-08-03T05:03:32.881Z

Reserved: 2022-03-03T00:00:00

Link: CVE-2022-26377

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-06-09T17:15:09.077

Modified: 2025-05-01T15:35:56.423

Link: CVE-2022-26377

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-06-08T00:00:00Z

Links: CVE-2022-26377 - Bugzilla

cve-icon OpenCVE Enrichment

No data.