Unrated severityNVD Advisory· Published Jul 18, 2024· Updated Sep 13, 2024
Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows
CVE-2024-40898
Description
SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests.
Users are recommended to upgrade to version 2.4.62 which fixes this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<=2.4.61+ 1 more
- (no CPE)range: <=2.4.61
- (no CPE)range: 2.4.0
- osv-coords2 versions
>= 2.4.0, < 2.4.62+ 1 more
- (no CPE)range: >= 2.4.0, < 2.4.62
- (no CPE)range: < 2.4.62-1.1
Patches
Vulnerability mechanics
References
1- httpd.apache.org/security/vulnerabilities_24.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.