14 matches found
Mageia: Security Advisory (MGASA-2025-0301)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : httpd, --advisory ALAS2-2025-2982 (ALAS-2025-2982)
The version of httpd installed on the remote host is prior to 2.4.65-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2982 advisory. A bug in Apache HTTP Server 2.4.64 results in all RewriteCond expr ... tests evaluating as true. Users are recommended to upgrade to...
Security Bulletin: IBM HTTP Server is affected by a security bypass vulnerability due to the included Apache HTTP Server (CVE-2025-54090)
Summary IBM HTTP Server used by IBM WebSphere Application Server is affected by a security bypass vulnerability due to the included Apache HTTP Server. This affects IBM HTTP Server with IFPH67153 installed. Vulnerability Details CVEID:CVE-2025-54090 DESCRIPTION: A bug in Apache HTTP Server 2.4.64...
CVE-2025-54090 affecting package httpd for versions less than 2.4.65-1
CVE-2025-54090 affecting package httpd for versions less than 2.4.65-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-54090 affecting package httpd for versions less than 2.4.65-1
CVE-2025-54090 affecting package httpd for versions less than 2.4.65-1. An upgraded version of the package is available that resolves this issue...
apache2-2.4.65-1.1 on GA media (moderate)
apache2-2.4.65-1.1 on GA media Announcement ID: openSUSE-SU-2025:15384-1 Rating: moderate Cross-References: CVE-2025-54090 CVSS scores: CVE-2025-54090 SUSE : 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2025-54090 SUSE : 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N...
Apache HTTP Server 2.4.64 RewriteCond Vulnerability - Windows
Apache HTTP Server is prone to a vulnerability in SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver"; if...
CVE-2025-54090
creationtimestamp| type| source ---|---|--- 2025-07-23 19:23:32+00:00| seen| https://bsky.app/profile/omo.bsky.social/post/3lunqmetiv225 2025-07-24 00:10:05+00:00| seen| https://bsky.app/profile/lobsters-feed.bsky.social/post/3luoamu363o2j 2025-07-24 05:30:09+00:00| seen|...
K000152694: Apache HTTPD vulnerability CVE-2025-54090
Security Advisory Description A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue. CVE-2025-54090 Impact There is no impact; F5 products are not affected by this vulnerabilit...
CVE-2025-54090
A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue...
CVE-2025-54090
Summary of CVE-2025-54090 : The issue affects Apache HTTP Server, specifically version 2.4.64, where all "RewriteCond expr ..." tests evaluate as true due to a bug in the expression evaluation. The remedy is to upgrade to version 2.4.65, which includes the fix. The provided connected documents co...
CVE-2025-54090
A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue...
KLA86161 SB vulnerability in Apache HTTP Server
Security vulnerability was found in Apache HTTP Server. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Fixed in Apache HTTP Server 2.4.65 Related products Apache-HTTP-Server CVE list CVE-2025-54090 high Solution Update to the latest version...
Apache 2.4.x < 2.4.65
The version of Apache httpd installed on the remote host is prior to 2.4.65. It is, therefore, affected by a vulnerability as referenced in the 2.4.65 advisory. - A bug in Apache HTTP Server 2.4.64 results in all RewriteCond expr ... tests evaluating as true. Users are recommended to upgrade to...