Multiple vulnerabilities in Apache HTTP Server

Описание

Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

1. HTTP request smuggling vulnerability in mod_rewrite and mod_proxy can be exploited to bypass security restrictions.
2. HTTP request smuggling vulnerability in mod_proxy_uwsgi can be exploited to bypass security restrictions.

Первичный источник обнаружения

• Fixed in Apache HTTP Server 2.4.56
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Apache-HTTP-Server

Список CVE

• CVE-2023-25690
  critical
• CVE-2023-27522
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com