CNNVD-202602-719 Information

CNNVD ID

CNNVD-202602-719

Related CVE

CVE-2026-24735

• CNNVD Published: 2026-02-04

Description (Chinese)

Apache Answer是美国阿帕奇（Apache）基金会的一个社区平台。 Apache Answer 1.7.1及之前版本存在安全漏洞，该漏洞源于未经验证的API端点暴露已删除内容的完整修订历史，可能导致敏感信息泄露。

Description (English)

Apache Answer is a community platform of the Apache Foundation in the United States. There is a security loophole in Apache Answer 1.7.1 and earlier versions, which originates from unverified API endpoints that exposes the full revision history of deleted content and may lead to the disclosure of sensitive information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2026-02-04

Last Modified

2026-02-24

References

https://lists.apache.org/thread/whxloom7mpxlyt5wzdskflsg5mzdzd60 http://www.openwall.com/lists/oss-security/2026/02/04/1 https://access.redhat.com/security/cve/cve-2026-24735

Patch

https://lists.apache.org/thread/whxloom7mpxlyt5wzdskflsg5mzdzd60