0.003 Low
EPSS
Percentile
71.9%
A flaw was found in the mod_remoteip module shipped with the httpd package. This flaw allows an attacker to spoof the IP address, resulting in the bypass of a mod_rewrite rule. The highest threat from this vulnerability is to integrity.
bugzilla.redhat.com/show_bug.cgi?id=1866559
httpd.apache.org/security/vulnerabilities_24.html#CVE-2020-11985
nvd.nist.gov/vuln/detail/CVE-2020-11985
www.cve.org/CVERecord?id=CVE-2020-11985