CVE-2021-31166

Description from NVD

HTTP Protocol Stack Remote Code Execution Vulnerability

Information Acquisition Date:2022-01-19T14:54Z
CVSS 2.0: 7.5 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:P/A:P

NVD References

 N/A
     source:N/A
     tags:Patch    Vendor Advisory    
 http://packetstormsecurity.com/files/162722/Microsoft-HTTP-Protocol-Stack-Remote-Code-Execution.html
     source:MISC
     tags:Third Party Advisory    VDB Entry    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Apache(2 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://github.com/0vercl0k/CVE-2021-3116628
http://twinybots.ch25
https://www.thezdi.com21
https://lists.astaro.com/ASGV9-IPS-rules.html16
https://twitter.com/search?src=sprv&q=CVE-2021-311667
https://corelight.blog/2021/05/27/detecting-cve-2021-31166-...5
https://threatpost.com/windows-exploit-wormable-rce/166289/5
https://noticiasseguridad.com/vulnerabilidades/investigador...5
https://www.zerodayinitiative.com/blog/2021/5/17/cve-2021-3...5
https://xakep.ru/2021/05/18/cve-2021-31166/4
http://tweetedtimes.com/v/23167?s=tnp4
https://thehackernews.com/2021/05/latest-microsoft-windows-...4
https://securityaffairs.co/wordpress/118015/hacking/poc-win...4
https://packetstormsecurity.com/files/162722/CVE-2021-31166...4
https://ift.tt/2RVBG783
https://therecord.media/poc-released-for-wormable-windows-i...3
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-...3
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...3
https://www.guardicore.com/blog/insight-for-cve-2021-31166/3
https://securityboulevard.com/2021/05/detecting-cve-2021-31...3
https://www.intellilink.co.jp/column/vulner/2021/060100.aspx3
https://www.bleepingcomputer.com/news/security/exploit-rele...3
https://ipssignatures.appspot.com/?cve=CVE-2021-311663

Information from Twitter

User URL Info Source Date
Prohacktiv3 https://github.com/blackn0te/Apache-HTTP-Server-2.4.49-2.4.... Source Prohacktiv3      1595318386451431424 2022/11/23
Prohacktiv3 https://twitter.com/Prohacktiv3/status/1595318386451431424/... Source Prohacktiv3      1595318386451431424 2022/11/23
OSINT_info https://github.com/blackn0te/Apache-HTTP-Server-2.4.49-2.4.... Source OSINT_info       1595318499332825088 2022/11/23
OSINT_info https://twitter.com/Prohacktiv3/status/1595318386451431424/... Source OSINT_info       1595318499332825088 2022/11/23

List of frequently cited URLs

URLNum of Times Referred to
github.com28
twinybots.ch25
www.thezdi.com21
lists.astaro.com16
twitter.com7
corelight.blog5
threatpost.com5
noticiasseguridad.com5
www.zerodayinitiative.com5
xakep.ru4
tweetedtimes.com4
thehackernews.com4
securityaffairs.co4
packetstormsecurity.com4
ift.tt3
therecord.media3
www.trustwave.com3
msrc.microsoft.com3
www.guardicore.com3
securityboulevard.com3
www.intellilink.co.jp3
www.bleepingcomputer.com3
ipssignatures.appspot.com3

Information from Twitter

User URL Info Source
Prohacktiv3 github.com Show Tweet
Prohacktiv3 twitter.com Show Tweet
OSINT_info github.com Show Tweet
OSINT_info twitter.com Show Tweet

GitHub Search Results: Up to 10
NameURL
0vercl0k/CVE-2021-31166 https://github.com/0vercl0k/CVE-2021-31166
corelight/CVE-2021-31166 https://github.com/corelight/CVE-2021-31166
antx-code/CVE-2021-31166 https://github.com/antx-code/CVE-2021-31166
y0g3sh-99/CVE-2021-31166-Exploit https://github.com/y0g3sh-99/CVE-2021-31166-Exploit
zha0gongz1/CVE-2021-31166 https://github.com/zha0gongz1/CVE-2021-31166
Frankmock/CVE-2021-31166-detection-rules https://github.com/Frankmock/CVE-2021-31166-detection-rules
zecopro/CVE-2021-31166 https://github.com/zecopro/CVE-2021-31166
Udyz/CVE-2021-31166 https://github.com/Udyz/CVE-2021-31166
phil-fly/poc https://github.com/phil-fly/poc
c4dr01d/CVE-2021-31166 https://github.com/c4dr01d/CVE-2021-31166

GitHub Search Results: Up to 10
NameURL
0vercl0k/CVE-2021-31166 github.com
corelight/CVE-2021-31166 github.com
antx-code/CVE-2021-31166 github.com
y0g3sh-99/CVE-2021-31166-Exploit github.com
zha0gongz1/CVE-2021-31166 github.com
Frankmock/CVE-2021-31166-detection-rules github.com
zecopro/CVE-2021-31166 github.com
Udyz/CVE-2021-31166 github.com
phil-fly/poc github.com
c4dr01d/CVE-2021-31166 github.com

2022/11/23 Score : 0
Added Har-sia Database : 2021/05/12
Last Modified : 2022/11/23
Highest Scored Date : 2021/05/18
Highest Score : 82