Multiple vulnerabilities in Apache HTTP Server

Описание

Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

1. Security vulnerability in SSRF can be exploited to bypass security restrictions.
2. Security vulnerability in mod_proxy can be exploited to bypass security restrictions.
3. Remote code execution vulnerability in mod_rewrite can be exploited to execute scripts in directories permitted
4. Denial of service vulnerability can be exploited remotely to cause denial of service.
5. Remote code execution vulnerability in mod_rewrite can be exploited remotely to execute arbitrary code.
6. Security vulnerability in mod_rewrite can be exploited to bypass security restrictions.
7. Denial of service vulnerability in mod_proxy can be exploited remotely to cause denial of service.
8. Security vulnerability in core of Apache HTTP Server can be exploited to bypass security restrictions.

Первичный источник обнаружения

• Fixed in Apache HTTP Server 2.4.60
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Apache-HTTP-Server

Список CVE

• CVE-2024-38472
  warning
• CVE-2024-38473
  warning
• CVE-2024-38474
  critical
• CVE-2024-36387
  warning
• CVE-2024-38475
  warning
• CVE-2024-39573
  warning
• CVE-2024-38477
  critical
• CVE-2024-38476
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com