Integer Overflow Vulnerability in apr_socket_sendv()

Integer Overflow Vulnerability in apr_socket_sendv()

CVE-2022-28331 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based buffer in apr_socket_sendv(). This is a result of integer overflow.

Learn more about our Cis Benchmark Audit For Apache Http Server.