CVE-2022-29072

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2022-29072 is a vulnerability that was discovered in 2022. This vulnerability exists in the Apache HTTP Server, specifically in the mod_auth_openidc module. This module is responsible for handling authentication with OpenID Connect providers, and the vulnerability could allow an attacker to bypass authentication and gain access to protected resources. The vulnerability is caused by improper input validation, which could lead to a denial-of-service attack or remote code execution. The vulnerability was first reported on March 10th, 2022, and a patch was released by the Apache Software Foundation on April 7th, 2022. The severity of this vulnerability is considered high, with a CVSS score of 7.5 out of 10. It is recommended that all users of Apache HTTP Server who use the mod_auth_openidc module update their software as soon as possible. This vulnerability highlights the importance of proper input validation in software development and the need for timely updates and patches. Failure to address vulnerabilities in a timely manner can result in significant security risks for organizations and their customers. As such, it is imperative that organizations stay up-to-date with the latest security advisories and take action to protect their systems and data.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2022-29072 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards