Analyzed 1 day ago. based on code collected 2 days ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
| Identifier | Related Record | Severity | Date Published | Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2025-66200 | BDSA-2025-43385 | Medium | Dec 05, 2025 | mod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htacc more... | 2.4.65, 2.4.64, 2.4.63, 2.4.62, 2.4.61, 2.4.60, 2.4.59, 2.4.58, 2.4.57, 2.4.55 |
| CVE-2025-65082 | BDSA-2025-43386 | Medium | Dec 05, 2025 | Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache conf more... | 2.4.65, 2.4.64, 2.4.63, 2.4.62, 2.4.61, 2.4.60, 2.4.59, 2.4.58, 2.4.57, 2.4.55 |
| CVE-2025-59775 | BDSA-2025-43387 | High | Dec 05, 2025 | Server-Side Request Forgery (SSRF) vulnerability in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off allows to pote more... | 2.4.65, 2.4.64, 2.4.63, 2.4.62, 2.4.61, 2.4.60, 2.4.59, 2.4.58, 2.4.57, 2.4.55 |
| CVE-2025-58098 | BDSA-2025-48089 | High | Dec 05, 2025 | Apache HTTP Server 2.4.65 and earlier with Server Side Includes (SSI) enabled and mod_cgid (but not mod_cgi) passes the shell-escaped query string to # more... | 2.4.65, 2.4.64, 2.4.63, 2.4.62, 2.4.61, 2.4.60, 2.4.59, 2.4.58, 2.4.57, 2.4.55 |
| CVE-2025-55753 | BDSA-2025-43388 | High | Dec 05, 2025 | An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures (~30 days in default configurations), to the backo more... | 2.4.65, 2.4.64, 2.4.63, 2.4.62, 2.4.61, 2.4.60, 2.4.59, 2.4.58, 2.4.57, 2.4.55 |
