Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache Apache HTTP Server Unauthenticated Remote Code Execution
MINI-6638-xmjx-fchj
Summary
A flaw in the Apache HTTP Server can allow an attacker to execute malicious code without a password. This affects Apache HTTP Server versions 2.4.25 to 2.4.37. You should update to the latest version to prevent unauthorized access and code execution.
What to do
- Update aws-privateca-issuer to version 1.8.1-r1.
- Update aws-privateca-issuer-compat to version 1.8.1-r1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | aws-privateca-issuer | <= 1.8.1-r1 | 1.8.1-r1 |
| – | aws-privateca-issuer-compat | <= 1.8.1-r1 | 1.8.1-r1 |
Original title
MINI-6638-xmjx-fchj
Published: 12 Apr 2026 · Updated: 12 Apr 2026 · First seen: 12 Apr 2026