Security Advisory

CVE-2024-39573

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-01 18:16:44

Last updated 2025-11-03 21:56:32

Assigner apache

State PUBLISHED

Description

Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URLs to be handled by mod_proxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue.

← Browse all CVEs View on cve.org ↗