Security Alert (A20-08-04): Multiple Vulnerabilities in Apache HTTP Server
17 August 2020
The Apache Software Foundation released a security update to address multiple vulnerabilities in the HTTP Server and its modules, including mod_proxy_uwsgi and mod_http2. A remote attacker could exploit the vulnerabilities by sending a specially crafted request to the affected systems.
Apache versions 2.4.20 to 2.4.43
Depending on the vulnerability exploited, a successful exploitation could lead to remote code execution, information disclosure or denial of service on an affected system.
The Apache Software Foundation has released new version of the product to address the issues and they can be downloaded at the following URL: