Two critical vulnerabilities in Apache HTTP Server (CVE-2024-40725 & CVE-2024-40898) could allow attackers to smuggle requests or bypass SSL client auth, leading to unauthorized access. Upgrade to version 2.4.62+ and review SSL configs ASAP! #ApacheHTTPServer #CVE #CensysRapidResponse https://censys.com/cve-2024-40725-40898/

The Apache Software Foundation recently announced several critical vulnerabilities in the Apache HTTP Server that pose significant risks to millions of websites. These vulnerabilities, could lead to serious issues such as unauthorized access to source code, server-side request forgery (SSRF), and denial of service (DoS) attacks. Specific vulnerabilities include issues with mod_http2, privilege escalation from modules' scripts, and problems related to mod_auth_digest among others. It's crucial for users to update to Apache HTTP Server 2.4.39 or later to mitigate these risks.

https://httpd.apache.org/security/vulnerabilities_24.html

#cybersecurity #apache #vulnerabilities #apachehttpserver #http #server #ssrf #DoS #attack #privilege_escalation #update

#ApacheHTTPServer I am having problems even when privileged after modifying my /var/www/html/index.html to create my own locally-hosted website. Any suggestions that can assist with updating the contents?

🚨 Security update for #RHEL9 users: Vulnerability found in httpd & mod_http2 (CVE-2023-25690). Apply the update now to secure your systems! More info: https://access.redhat.com/articles/11258 #CyberSecurity #RedHat #ApacheHTTPServer

US-Indigene: Apache Software Foundation soll ihren Namen ändern

Seit 1999 gibt es die Apache Foundation, gleichnamige Projekte teilweise viel länger. Die Bezeichnung sei eine respektlose Aneignung und müsse geändert werden.

https://www.heise.de/news/Natives-in-Tech-Apache-Software-Foundation-soll-Namen-aendern-7458216.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege

#Apache #ApacheHTTPServer #ApacheSoftwareFoundation #Diskriminierung #Indigene #Stereotypen #Ureinwohner #News