Updated: 2024-11-30 03:53:15.758618
Description:
SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0 | |
| CVSS Version 3.x | HIGH | 7.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| CentOS 7 ELS | httpd | 2.4.6 | 7.5 | HIGH | Not Vulnerable | 2025-02-09 00:26:13 | not vulnerable | |
| CloudLinux 7 ELS | httpd | 2.4.6 | 7.5 | HIGH | Not Vulnerable | 2025-02-07 22:52:45 | ||
| Oracle Linux 7 ELS | httpd | 2.4.6 | 7.5 | HIGH | Not Vulnerable | 2025-02-08 22:48:54 |