VYPR
Unrated severityNVD Advisory· Published Jun 8, 2022· Updated Aug 3, 2024

Denial of service in mod_lua r:parsebody

CVE-2022-29404

Description

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

58

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.