AI Score
Confidence
Low
EPSS
Percentile
48.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request.
Users are recommended to upgrade to version 2.4.60, which fixes this issue.
[
{
"vendor": "Apache Software Foundation",
"product": "Apache HTTP Server",
"versions": [
{
"status": "affected",
"version": "2.4.0",
"versionType": "semver",
"lessThanOrEqual": "2.4.59"
}
],
"defaultStatus": "unaffected"
}
]