CNNVD-202507-1506 Information
CNNVD ID
CNNVD-202507-1506
Related CVE
- CNNVD Published: 2025-07-10
Description (Chinese)
Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点。 Apache HTTP Server 2.4.63及之前版本存在安全漏洞,该漏洞源于mod_ssl对用户提供数据转义不足,可能导致日志文件插入转义字符。
Description (English)
Apache HTTP Server is an open-source web server of the Apache Foundation in the United States. The server has a fast, reliable character and can be expanded through a simple API. There is a security loophole in Apache HTTP Server 2.4.63 and earlier versions, which stems from the lack of data conversions provided by the mod ssl to users, which may lead to the insertion of transliteration characters in log files.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
阿帕奇
Published
2025-07-10
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujan2026.html https://nvd.nist.gov/vuln/detail/CVE-2024-47252 https://access.redhat.com/security/cve/cve-2024-47252
Patch
https://httpd.apache.org/download.cgi
Share on: