VYPR
Critical severity9.8NVD Advisory· Published Jun 20, 2017· Updated Jun 17, 2026

CVE-2017-3167

CVE-2017-3167

Description

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

49

Patches

Vulnerability mechanics

References

39

News mentions

0

No linked articles in our index yet.