CNNVD-202507-1505 Information

CNNVD ID

CNNVD-202507-1505

Related CVE

CVE-2024-42516

• CNNVD Published: 2025-07-10

Description (Chinese)

Apache HTTP Server是美国阿帕奇（Apache）基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点。 Apache HTTP Server存在输入验证错误漏洞，该漏洞源于HTTP响应拆分，可能导致攻击者操纵Content-Type响应头。

Description (English)

Apache HTTP Server is an open-source web server of the Apache Foundation in the United States. The server has a fast, reliable character and can be expanded through a simple API. Apache HTTP Server had an input validation error that originated in the HTTP response split and could have led the attackers to manipulate the Content-Type response head.

Hazard Level

Medium

Vulnerability Type

输入验证错误

Affected Vendor

阿帕奇

Published

2025-07-10

Last Modified

2026-02-24

References

https://www.oracle.com/security-alerts/cpujan2026.html https://nvd.nist.gov/vuln/detail/CVE-2024-42516 https://access.redhat.com/security/cve/cve-2024-42516

Patch

https://httpd.apache.org/download.cgi