Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021<p>On September 16, 2021, the Apache Software Foundation disclosed five vulnerabilities affecting the Apache HTTP Server (httpd) 2.4.48 and earlier releases.</p>
<p>For a description of these vulnerabilities, see the <a href="https://httpd.apache.org/security/vulnerabilities_24.html#2.4.49">Apache HTTP Server 2.4.49 section</a> of the Apache HTTP Server 2.4 vulnerabilities webpage.</p>
<p>This advisory will be updated as additional information becomes available.</p>
<p>This advisory is available at the following link:<br><a href="https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ" target="_blank" rel="noopener">https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ</a></p>
Security Impact Rating: High
CVE: CVE-2021-33193,CVE-2021-34798,CVE-2021-36160,CVE-2021-39275,CVE-2021-40438
Source: Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021 (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Vulnerabilities%20in%20Apache%20HTTP%20Server%20Affecting%20Cisco%20Products:%20November%202021&vs_k=1)