0.974 High
EPSS
Percentile
99.9%
Bug has been disclosed here:
https://blog.fuzzing-project.org/60-Optionsbleed-HTTP-OPTIONS-method-can-leak-Apaches-server-memory.html
poc code:
https://github.com/hannob/optionsbleed
Apache is currently preparing 2.4.28, which will contain the fix, a patch is available in their svn repo.
0.974 High
EPSS
Percentile
99.9%