Share:

CVE-2019-10082 - Apache HTTP Server

September 26, 2019

Critical 9.1

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown.

Affected software

Apache HTTP Server

Reference links

https://httpd.apache.org/security/vulnerabilities_24.html

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.