This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SA-2023-008 - Apache HTTP Server LimitXMLRequestBody (CVE-2022-22721)

SamPirok
Community Manager Community Manager
Community Manager
‎01-17-2023 11:10 AM

Summary
If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32-bit systems, an integer overflow happens which later causes out of bounds writes.

Products not listed in the Impact Details section have not been evaluated. Furthermore, products that have exceeded any software maintenance time periods are also not evaluated and will not be published. Please consult End of Sale and End of Service Life - Extreme Networks for the EOL notices related to the product under question.

Products Potentially Affected

Impact Details

OS/Product Exposure
ExtremeCloud IQ No
HiveManager Classic On-Premises No
HiveManager Classic Online No
IQ Engine (HiveOS) No

Repair Recommendations
None

 

Please see the full Security Advisory article here, for more details. 

0 Kudos
Popular Articles
GTM-P2G8KFN