https://www.hackthebox.com/blog/cve-2021-41773-explained

a path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49