CVE-2024-39573 Information

Description

Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL’s to be handled by mod_proxy. Users are recommended to upgrade to version 2.4.60 which fixes this issue.

Reference

https://httpd.apache.org/security/vulnerabilities_24.html