Apache HTTP Server Multiple Vulnerabilities
Release Date: 6 May 2026
RISK: Medium Risk
TYPE: Servers - Web Servers
Multiple vulnerabilities were identified in Apache HTTP Server. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, elevation of privilege, denial of service condition, security restriction bypass and sensitive information disclosure on the targeted system.
Impact
- Denial of Service
- Security Restriction Bypass
- Information Disclosure
- Elevation of Privilege
- Remote Code Execution
System / Technologies affected
- Apache HTTP Server versions prior to 2.4.67
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Apache HTTP Server version 2.4.67
Vulnerability Identifier
- CVE-2026-23918
- CVE-2026-24072
- CVE-2026-28780
- CVE-2026-29168
- CVE-2026-29169
- CVE-2026-33006
- CVE-2026-33007
- CVE-2026-33523
- CVE-2026-33857
- CVE-2026-34032
- CVE-2026-34059
沒有留言:
發佈留言