Defect #43574: Apache Vulnerability Issue - Redmine

Actions

Copy link

Defect #43574

closed

Apache Vulnerability Issue

Added by Kelvin Beh 3 days ago. Updated 2 days ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Security

Target version:

Start date:

Due date:

% Done:

Estimated time:

Resolution:

Invalid

Affected version:

6.0.7

Description

Hi Development Team,

We recently identified a potential vulnerability associated with Apache version 2.4.65. Although our server is currently secured with an SSL certificate and the related module has been disabled, I understand that these measures may only serve as temporary mitigation.

I have attached the detailed report for your review.
Please take a look and advise on the appropriate next steps.

Thank you.

Files

FW EXTERNALEWA Apache HTTP Server Patches SSRF NTLM Hash Leak suexec Privilege Bypass and Three Additional Low-Severity Flaws (REFEWA20251209-01).msg (646 KB) FW EXTERNALEWA Apache HTTP Server Patches SSRF NTLM Hash Leak suexec Privilege Bypass and Three Additional Low-Severity Flaws (REFEWA20251209-01).msg

Security Report

Kelvin Beh, 2025-12-10 02:34

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Redmine

Custom queries

Defect #43574

Apache Vulnerability Issue

Updated by Go MAEDA 2 days ago