VYPR
High severity7.5NVD Advisory· Published Jul 10, 2025· Updated Jun 17, 2026

CVE-2025-49630

CVE-2025-49630

Description

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2.

Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with ProxyPreserveHost set to "on".

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

55

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.