CVE-2022-22721
core: Possible buffer overflow with very large or unlimited LimitXMLRequestBodyIf LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.
We have discovered 978,452 live websites that are affected by CVE-2022-22721.
Affected Software
| Product |  Apache |
| Category | Web Servers |
| Vulnerable Domains | 978,452 live websites (37% of Apache install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 44 versions ( 37% of all versions) |
Common Weakness Enumeration
CWE-190 Integer Overflow or WraparoundDetails
- Published - Mar 14, 2022
- Updated - Aug 3, 2024
Credits
- Anonymous working with Trend Micro Zero Day Initiative
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2022-22721 United States | 295,614 websites |
 Germany | 106,373 websites |
 France | 55,617 websites |
 Russia | 41,755 websites |
 Japan | 40,800 websites |
 Italy | 34,289 websites |
 Singapore | 33,411 websites |
 Netherlands | 30,018 websites |
 GB | 26,895 websites |
 Canada | 25,344 websites |
Website Distribution by TLD
Number of websites using CVE-2022-22721| .com | 364,928 websites |
| .de | 62,599 websites |
| .org | 46,002 websites |
| .net | 38,665 websites |
| .ru | 36,688 websites |
| .it | 30,412 websites |
| .nl | 22,364 websites |
| .cz | 20,841 websites |
| .pl | 20,371 websites |
| .jp | 18,112 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2022-22721
Top websites that are affected by CVE-2022-22721. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *******.com | Singapore | *** | |
| *************.***.****.****.************.net | United States | *** | |
| *********.net | United States | *** | |
| ***.****.us | United States | *,*** | |
| ***.*********.com | Singapore | *,*** | |
| *****.*******.com | Singapore | *,*** | |
| ******************.com | United States | *,*** | |
| ****.*********.net | GB | *,*** | |
| ****.com | United States | *,*** | |
| ********.com | United States | *,*** |
FAQ
CVE-2022-22721 is Integer Overflow or Wraparound in Apache
A total of 978,452 websites have been identified as vulnerable to CVE-2022-22721, based on global website indexing conducted by WebTechSurvey.
The Apache is affected by the CVE-2022-22721 vulnerability.
Apache versions up to and including 2.4.52 are vulnerable to CVE-2022-22721.
References
- https://httpd.apache.org/security/vulnerabilities_24.html
- http://www.openwall.com/lists/oss-security/2022/03/14/2
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGWILBORT67SHMSLYSQZG2NMXGCMPUZO/
- https://lists.debian.org/debian-lts-announce/2022/03/msg00033.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z7H26WJ6TPKNWV3QKY4BHKUKQVUTZJTD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X73C35MMMZGBVPQQCH7LQZUMYZNQA5FO/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://security.netapp.com/advisory/ntap-20220321-0001/
- http://seclists.org/fulldisclosure/2022/May/33
- http://seclists.org/fulldisclosure/2022/May/35
- http://seclists.org/fulldisclosure/2022/May/38
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://support.apple.com/kb/HT213257
- https://support.apple.com/kb/HT213256
- https://support.apple.com/kb/HT213255
- https://security.gentoo.org/glsa/202208-20