Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
Apache HTTP Server Unauthenticated File Disclosure in Windows
BELL-CVE-2026-31584
Summary
A vulnerability in the Apache HTTP Server on Windows allows an attacker to access sensitive files without a password. This could potentially lead to unauthorized access to confidential data. To protect your server, update the Apache HTTP Server to the latest version and ensure you have the latest security patches installed.
What to do
- Update bellsoft linux-lts to version 6.12.85-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Alpaquita:25 | bellsoft | linux-lts |
>= 6.12.81-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
| Alpaquita:stream | bellsoft | linux-lts |
>= 6.12.80-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
Original title
BELL-CVE-2026-31584
osv CVSS3.1
7.8
- https://docs.bell-sw.com/security/cves/CVE-2026-31584 Vendor Advisory
Published: 3 May 2026 · Updated: 6 May 2026 · First seen: 6 May 2026