Multiple vulnerabilities in Apache HTTP Server

Описание

Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Security vulnerability in SSRF can be exploited to bypass security restrictions.
2. Security vulnerability in «AddType» and similar configuration can be exploited to bypass security restrictions.

Первичный источник обнаружения

• Fixed in Apache HTTP Server 2.4.62
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Apache-HTTP-Server

Список CVE

• CVE-2024-40898
  critical
• CVE-2024-40725
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com