Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021

cisco-sa-apache-httpd-2.4.49-VWL69sWQ · High · Published · Updated

On September 16, 2021, the Apache Software Foundation disclosed five vulnerabilities affecting the Apache HTTP Server (httpd) 2.4.48 and earlier releases. For a description of these vulnerabilities, see the Apache HTTP Server 2.4.49 section of the Apache HTTP Server 2.4 vulnerabilities webpage. This advisory will be updated as additional information becomes available. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ

Cisco advisory · CSAF JSON

Workarounds

Any workarounds will be documented in the product-specific Cisco bugs, which are identified in the Vulnerable Products ["#vp"] section of this advisory.

CVEsCVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438
Cisco Bug IDsNA
CVSS ScoreBase 9.0
Base 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:X/RL:X/RC:X
Base 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Expressway, Cisco TelePresence Video Communication Server (VCS) Expressway, Cisco Firepower Extensible Operating System (FXOS)

Related Products

Product CVE Evidence
Firepower Extensible Operating System CVE-2021-40438 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway CVE-2021-40438 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) CVE-2021-40438 Cisco OpenVuln
Cisco TelePresence CVE-2021-40438 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2021-40438 Cisco OpenVuln
Cisco Firepower Extensible Operating System CVE-2021-40438 Cisco OpenVuln
Cisco Expressway CVE-2021-40438 Cisco OpenVuln
Firepower Extensible Operating System CVE-2021-39275 Cisco OpenVuln
Firepower Extensible Operating System CVE-2021-36160 Cisco OpenVuln
Firepower Extensible Operating System CVE-2021-34798 Cisco OpenVuln
Firepower Extensible Operating System CVE-2021-33193 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway CVE-2021-39275 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway CVE-2021-36160 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway CVE-2021-34798 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) Expressway CVE-2021-33193 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) CVE-2021-39275 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) CVE-2021-36160 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) CVE-2021-34798 Cisco OpenVuln
Cisco TelePresence Video Communication Server (VCS) CVE-2021-33193 Cisco OpenVuln
Cisco TelePresence CVE-2021-39275 Cisco OpenVuln
Cisco TelePresence CVE-2021-36160 Cisco OpenVuln
Cisco TelePresence CVE-2021-34798 Cisco OpenVuln
Cisco TelePresence CVE-2021-33193 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2021-39275 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2021-36160 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2021-34798 Cisco OpenVuln
Cisco Firepower Extensible Operating System (FXOS) CVE-2021-33193 Cisco OpenVuln
Cisco Firepower Extensible Operating System CVE-2021-39275 Cisco OpenVuln
Cisco Firepower Extensible Operating System CVE-2021-36160 Cisco OpenVuln
Cisco Firepower Extensible Operating System CVE-2021-34798 Cisco OpenVuln
Cisco Firepower Extensible Operating System CVE-2021-33193 Cisco OpenVuln
Cisco Expressway CVE-2021-39275 Cisco OpenVuln
Cisco Expressway CVE-2021-36160 Cisco OpenVuln
Cisco Expressway CVE-2021-34798 Cisco OpenVuln
Cisco Expressway CVE-2021-33193 Cisco OpenVuln