Multiple vulnerabilities in Apache HTTP Server

Description

Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

1. HTTP Response splitting vulnerability can be exploited to execute arbitrary code.
2. Denial of service vulnerability in HTTP/2 can be exploited to cause denial of service.
3. Input validation vulnerability in core can be exploited to execute arbitrary code.

Fiches de renseignement originales

• Fixed in Apache HTTP Server 2.4.59

Exploitation

Public exploits exist for this vulnerability.

Produits associés

• Apache-HTTP-Server

Liste CVE

• CVE-2024-24795
  high
• CVE-2024-27316
  critical
• CVE-2023-38709
  high

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com