{"alias":[],"description":"The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.","epss":{"percentile":"0.96313","score":"0.259670"},"id":"CVE-2012-4557","metrics":{"cvss2":{"ac_insuf_info":0,"access_complexity":"LOW","access_vector":"NETWORK","authentication":"NONE","availability_impact":"PARTIAL","base_score":5.0,"base_severity":"MEDIUM","confidentiality_impact":"NONE","exploitability_score":10.0,"impact_score":2.9,"integrity_impact":"NONE","obtain_all_privilege":0,"obtain_other_privilege":0,"obtain_user_privilege":0,"user_interaction_required":0,"vector_string":"AV:N\/AC:L\/Au:N\/C:N\/I:N\/A:P","version":"2.0"}},"modified":"2026-04-29T01:13:23","nvd_status":"Modified","published":"2012-11-30T19:55:01","score":5.0,"severity":"MEDIUM","source":"secalert@redhat.com","status":"PUBLISHED","weaknesses":[{"id":"CWE-399","name":"Resource Management Errors","type":"category"}]}