Apache » Http Server » 2.4.25 : Security Vulnerabilities, CVEs, (Code Execution)
CVE-2019-0211
Known exploited
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.
Max CVSS
7.8
EPSS Score
97.42%
Published
2019-04-08
Updated
2021-06-06
CISA KEV Added
2021-11-03
1 vulnerabilities found