VYPR
Unrated severityNVD Advisory· Published Jul 1, 2024· Updated Nov 3, 2025

Apache HTTP Server: mod_rewrite proxy handler substitution

CVE-2024-39573

Description

Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

52

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.