'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

vul_srv:apache_http_server_mod_proxy_ssrf_vul(Rule ID:1070010029)

Release Date2025/9/15

Rule NameCVE-2021-40438: Apache HTTP Server 2.4.48 mod_proxy SSRF Vulnerability

Severity:critical

CVE IDCVE-2021-40438

 

Descripiton

Apache HTTP Server is an open source web server of the Apache Foundation in the United States. The server is fast, reliable and extensible through a simple API. There is a code problem vulnerability in Apache HTTP Server. This vulnerability is caused by the system's failure to strictly filter the user's input. An attacker can construct malicious data to carry out SSRF attacks on the target server. This vulnerability can be used as a springboard for attacking the intranet of the target server, so as to perform port scanning on the intranet where the server is located, attack applications running on the intranet, and download intranet resources. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.