CVE-2024-38476

🗓️ 01 Jul 2024 19:15:04Reported by [email protected]Type

nvd

nvd🔗 web.nvd.nist.gov👁 128 Views

Vulnerability in Apache HTTP Server 2.4.5

Reporter	Title	Published	Views	Family All 233
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities	15 Apr 202503:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server is vulnerable to multiple vulnerabilities due to the included Apache HTTP Server	29 Jul 202414:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM HTTP Server (powered by Apache) for IBM i is vulnerable to a remote attacker obtaining sensitive information, bypassing security restrictions, and a server-side request forgery due to multiple vulnerabilities.	8 Dec 202414:16	–	ibm
IBM Security Bulletins	Security Bulletin: TSSC/IMC addresses multiple security vulnerabilities.	22 May 202521:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Aspera Console has addressed multiple vulnerabilities.	15 Apr 202502:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM DevOps Code ClearCase [CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573]	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability with Apache HTTP, OpendJDK, python3 and spring-web affect IBM Cloud Object Storage Systems (Sept 2024v1)	19 Sep 202403:45	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server.	26 Jul 202413:13	–	ibm
IBM Security Bulletins	Security Bulletin: Due to use of IBM Tivoli Monitoring , IBM Cloud Pak System is affected by multiple vulnerabilities.	10 Jul 202514:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Datapower Operations Dashboard could allow a remote attacker to obtain sensitive information CVE-2024-38476	28 Jan 202522:08	–	ibm

NVD

Node

apache http_serverRange2.4.0–2.4.60

Node

netapp clustered_data_ontapMatch9.0

Source	Link
security	www.security.netapp.com/advisory/ntap-20240712-0001/
httpd	www.httpd.apache.org/security/vulnerabilities_24.html
openwall	www.openwall.com/lists/oss-security/2024/07/01/9
seclists	www.seclists.org/fulldisclosure/2024/Oct/11

03 Nov 2025 22:17Current

CVSS 3.19.8

EPSS0.04673

cve-2024-38476 apache http server information disclosure ssrf local script execution upgrade