AZL-6487 — Vulnetix

AZL-6487 PUBLISHED CVSS 9 CRITICAL

CVE-2021-40438 affecting package httpd for versions less than 2.4.52-1

Risk Scores

CVSS 3.1

9

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Azure Linux:2	httpd	0

Exploit Intelligence

CVE-2021-40438 Apache <= 2.4.48 SSRF exploit (github-poc-repo)
Apache <= 2.4.48 Mod_Proxy - Server-Side Request Forgery (github-poc-repo)
Check Point Security Gateways RCE via CVE-2021-40438 (github-poc-repo)
n0m-d/CVE-2021-40438-POC (github-poc-repo)
n0m-d/CVE-2021-40438-POC (github-poc)
Check Point Security Gateways RCE via CVE-2021-40438 (github-poc)
Apache <= 2.4.48 Mod_Proxy - Server-Side Request Forgery (github-poc)
CVE-2021-40438 Apache <= 2.4.48 SSRF exploit (github-poc)
check CVE-2021-40438 (github-poc)
Sigma-Rule-for-CVE-2021-40438-Attack-Attemp (github-poc)

…and 9 more exploits

Timeline

Sep 16, 2021 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2021-40438 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›