跳转到帖子

Amazon Linux AMI: CVE-2024-38477: Security patch for httpd24 (ALAS-2024-1944)

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Amazon Linux AMI: CVE-2024-38477: Security patch for httpd24 (ALAS-2024-1944)

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
07/01/2024
Created
07/27/2024
Added
07/25/2024
Modified
01/28/2025

Description

null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request.

Users are recommended to upgrade to version 2.4.60, which fixes this issue.

Solution(s)

  • amazon-linux-upgrade-httpd24

References

  • ALAS-2024-1944
  • CVE-2024-38477
  • 查看数 703
  • 已创建
  • 最后回复
转到主题列表