ГлавнаяУязвимости → CVE-2026-34355
7.5высокая

CVE-2026-34355

Описание

A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue.

Затрагиваемое ПО
Apache Http server
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://httpd.apache.org/security/vulnerabilities_24.htmlhttp://www.openwall.com/lists/oss-security/2026/06/08/6https://access.redhat.com/errata/RHSA-2026:34109https://access.redhat.com/security/cve/CVE-2026-34355https://bugzilla.redhat.com/show_bug.cgi?id=2486414https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-34355.json