CVE-2024-40898

Publication date

2024-07-18 09:32:06

Family

apache

State

PUBLISHED

Description

SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue.