Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-42013— Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)

KEV · Ransomware EPSS 94.41% · P100
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-42013

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
Source: NVD (National Vulnerability Database)
Vulnerability Description
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration "require all denied", these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue only affects Apache 2.4.49 and Apache 2.4.50 and not earlier versions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apache HTTP Server 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点。 Apache HTTP Server 存在安全漏洞,该漏洞源于发现 Apache HTTP Server 2.4.50 版本中对 CVE-2021-41773 的修复不够充分。攻击者可以使用路径遍历攻击将 URL 映射到由类似别名的指令配置的目录之外的文件。如果这些目录之外的文件不受通常的默认配置“要求全部拒绝”的保护,则这些请求可能会成功。如果还为这些别
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
Apache Software FoundationApache HTTP Server Apache HTTP Server 2.4.49 -

II. Public POCs for CVE-2021-42013

#POC DescriptionSource LinkShenlong Link
1Exploit with integrated shodan searchhttps://github.com/andrea-mattioli/apache-exploit-CVE-2021-42013POC Details
2Apache 2.4.50 Path traversal vulnerabilityhttps://github.com/Vulnmachines/cve-2021-42013POC Details
3Docker container lab to play/learn with CVE-2021-42013https://github.com/twseptian/cve-2021-42013-docker-labPOC Details
4Nonehttps://github.com/LayarKacaSiber/CVE-2021-42013POC Details
5Poc CVE-2021-42013 - Apache 2.4.50 without CGIhttps://github.com/TheLastVvV/CVE-2021-42013POC Details
6PoC CVE-2021-42013 reverse shell Apache 2.4.50 with CGIhttps://github.com/TheLastVvV/CVE-2021-42013_Reverse-ShellPOC Details
7cve-2021-42013.py is a python script that will help in finding Path Traversal or Remote Code Execution vulnerability in Apache 2.4.50https://github.com/walnutsecurity/cve-2021-42013POC Details
8Exploit Apache 2.4.50(CVE-2021-42013)https://github.com/robotsense1337/CVE-2021-42013POC Details
9Nonehttps://github.com/xMohamed0/CVE-2021-42013-ApacheRCEPOC Details
10Apache 远程代码执行 (CVE-2021-42013)批量检测工具:Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点,发现 Apache HTTP Server 2.4.50 中针对 CVE-2021-41773 的修复不够充分。攻击者可以使用路径遍历攻击将 URL 映射到由类似别名的指令配置的目录之外的文件。如果这些目录之外的文件不受通常的默认配置“要求全部拒绝”的保护,则这些请求可能会成功。如果还为这些别名路径启用了 CGI 脚本,则这可能允许远程代码执行。此问题仅影响 Apache 2.4.49 和 Apache 2.4.50,而不影响更早版本。https://github.com/asaotomo/CVE-2021-42013-Apache-RCE-Poc-ExpPOC Details
11CVE-2021-42013-exphttps://github.com/rnsss/CVE-2021-42013POC Details
12Apache HTTP Server 2.4.50 - RCE Labhttps://github.com/jas9reet/CVE-2021-42013-LABPOC Details
13These Nmap, Python and Ruby scripts detects and exploits CVE-2021-42013 with RCE and local file disclosure.https://github.com/mauricelambert/CVE-2021-42013POC Details
14Nonehttps://github.com/honypot/CVE-2021-42013POC Details
15Nonehttps://github.com/Adashz/CVE-2021-42013POC Details
16CVE-2021-42013 - Apache 2.4.50https://github.com/hadrian3689/apache_2.4.50POC Details
17Exploit for Apache 2.4.50 (CVE-2021-42013)https://github.com/viliuspovilaika/cve-2021-42013POC Details
18Apache 2.4.49-50 Remote Code Execution Exploithttps://github.com/theykillmeslowly/CVE-2021-42013POC Details
19Nonehttps://github.com/mightysai1997/cve-2021-42013POC Details
20Nonehttps://github.com/mightysai1997/cve-2021-42013LPOC Details
21Nonehttps://github.com/mightysai1997/cve-2021-42013.getPOC Details
22Vulnerable configuration Apache HTTP Server version 2.4.49/2.4.50https://github.com/12345qwert123456/CVE-2021-42013POC Details
23CVE: 2021-42013 Tested on: 2.4.49 and 2.4.50 Description: Path Traversal or Remote Code Execution vulnerabilities in Apache 2.4.49 and 2.4.50https://github.com/cybfar/cve-2021-42013-httpdPOC Details
24Exploring CVE-2021-42013, using Suricata and OpenVAS to gather infohttps://github.com/vudala/CVE-2021-42013POC Details
25Apache 2.4.50 Automated Remote Code Execution and Path traversalhttps://github.com/birdlinux/CVE-2021-42013POC Details
26Nonehttps://github.com/Hamesawian/CVE-2021-42013POC Details
27A PoC exploit for CVE-2021-42013 - Apache 2.4.49 & 2.4.50 Remote Code Executionhttps://github.com/K3ysTr0K3R/CVE-2021-42013-EXPLOITPOC Details
28Apache 2.4.50 - Path Traversal or Remote Code Executionhttps://github.com/Rubikcuv5/cve-2021-42013POC Details
29Nonehttps://github.com/imhunterand/CVE-2021-42013POC Details
30CVE-2021-42013 Vulnerability Scanner This Python script checks for the Remote Code Execution (RCE) vulnerability (CVE-2021-42013) in Apache 2.4.50. https://github.com/BassoNicolas/CVE-2021-42013POC Details
31CVE-2021-42013, a critical vulnerability in the Apache HTTP Server (2.4.50)https://github.com/rafifdna/CVE-2021-42013POC Details
32On October 4, 2021, Apache HTTP Server Project released Security advisory on a Path traversal and File disclosure vulnerability in Apache HTTP Server 2.4.49 and 2.4.50 tracked as CVE-2021-41773 and CVE-2021-42013. In the advisory, Apache also highlighted “the issue is known to be exploited in the wild” and later it was identified that the vulnerabihttps://github.com/Jhonsonwannaa/cve-2021-42013-apachePOC Details
33Nonehttps://github.com/bananoname/cve-2021-42013POC Details
34On October 4, 2021, Apache HTTP Server Project released Security advisory on a Path traversal and File disclosure vulnerability in Apache HTTP Server 2.4.49 and 2.4.50 tracked as CVE-2021-41773 and CVE-2021-42013. In the advisory, Apache also highlighted “the issue is known to be exploited in the wild” and later it was identified that the vulnerabihttps://github.com/dream434/cve-2021-42013-apachePOC Details
35Nonehttps://github.com/asepsaepdin/cve-2021-42013POC Details
36Nonehttps://github.com/asepsaepdin/CVE-2021-42013POC Details
37A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49 and 2.4.50. An attacker could use a path traversal attack to map URLs to files outside the expected document root. If files outside of the document root are not protected by "require all denied" these requests can succeed. Additionally, this flaw could leak the source of interpreted files like CGI scripts. In certain configurations, for instance if mod_cgi is enabled, this flaw can lead to remote code execution. This issue only affects Apache 2.4.49 and 2.4.50 and not earlier versions. Note - CVE-2021-42013 is due to an incomplete fix for the original vulnerability CVE-2021-41773. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-42013.yamlPOC Details
38Nonehttps://github.com/Threekiii/Awesome-POC/blob/master/%E4%B8%AD%E9%97%B4%E4%BB%B6%E6%BC%8F%E6%B4%9E/Apache%20HTTP%20Server%202.4.50%20%E8%B7%AF%E5%BE%84%E7%A9%BF%E8%B6%8A%E6%BC%8F%E6%B4%9E%20CVE-2021-42013.mdPOC Details
39Nonehttps://github.com/Threekiii/Awesome-POC/blob/master/%E4%B8%AD%E9%97%B4%E4%BB%B6%E6%BC%8F%E6%B4%9E/Apache%20HTTPd%20%E8%B7%AF%E5%BE%84%E7%A9%BF%E8%B6%8A%E6%BC%8F%E6%B4%9E%20CVE-2021-42013.mdPOC Details
40https://github.com/vulhub/vulhub/blob/master/httpd/CVE-2021-42013/README.mdPOC Details
41Una herramienta avanzada de escaneo, explotación e interacción remota diseñada para detectar y aprovechar la vulnerabilidad Apache Path Traversal + RCE (CVE-2021-42013) en servidores mal configurados.https://github.com/Makavellik/POC-CVE-2021-42013-EXPLOITPOC Details
42A powerful and reliable exploit tool for Apache HTTP Server vulnerabilities CVE-2021-41773 and CVE-2021-42013. This tool provides remote code execution capabilities on vulnerable Apache 2.4.49 and 2.4.50 servers.https://github.com/FakhriCRD/Apache-CVE-2021-42013-RCE-ExploitPOC Details
43A comprehensive Python-based vulnerability scanner for detecting CVE-2021-41773 and CVE-2021-42013 path traversal and remote code execution vulnerabilities in Apache HTTP Server versions 2.4.49 and 2.4.50.https://github.com/drackyjr/CVE-2021-42013POC Details
44Nonehttps://github.com/ranasen-rat/cve-2021-42013POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2021-42013

登录查看更多情报信息。

Same Patch Batch · Apache Software Foundation · 2021-10-07 · 3 CVEs total

CVE-2021-28129DEB packaging for Apache OpenOffice 4.1.8 installed with a non-root userid and groupid
CVE-2021-40439Billion Laughs

IV. Related Vulnerabilities

Same product: Apache HTTP Server
Same vendor: Apache Software Foundation
Same weakness: CWE-22

V. Comments for CVE-2021-42013

No comments yet

Leave a comment