Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache HTTP Server: Unauthenticated Remote Code Execution
MINI-pp8q-6p2x-v65c
Summary
Apache HTTP Server contains a flaw that could allow an attacker to execute malicious code on a server without needing a password. This could happen if an attacker sends a specially crafted request to the server. To protect your server, update to the latest version of Apache HTTP Server.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | gitlab-cng-fips-18.5 | All versions | – |
| – | gitlab-base-fips-18.5 | All versions | – |
| – | gitlab-container-registry-fips-18.5 | All versions | – |
| – | gitlab-logger-fips-18.5 | All versions | – |
| – | gitlab-shell-fips-18.5 | All versions | – |
Original title
MINI-pp8q-6p2x-v65c
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026