Ref# ADV2021_245 | Date: Dec 24th 2021

---

Apache has published a security advisory to investigate and address a critical vulnerability, tracked as CVE-2021-44790 and CVE-2021-44224 that can allow remote actors to take full control of an affected system. It is recommended that you take the necessary precautions by ensuring your products are always updated.

For more information on this update, you can follow this URL:

https://httpd.apache.org/security/vulnerabilities_24.html

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.
PDF Download: Apache Security Updates.pdf

References

• Apache security advisory (22nd December 2021). Retrieve from Apache.

         https://httpd.apache.org/security/vulnerabilities_24.html

• Apache security advisory (22nd December 2021). Retrieved from Cybersecurity & Infrastructure Security Agency.

         https://www.cisa.gov/uscert/ncas/current-activity/2021/12/22/apache-releases-security-update-http-server