Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.6
Apache HTTP Server Remote File Disclosure in Windows
BELL-CVE-2026-31611
Summary
Apache's HTTP Server for Windows has a vulnerability that allows an attacker to access sensitive files on a server. This could happen if an attacker sends a specific request to the server, which would then reveal the contents of those files. To protect your server, ensure you're running the latest version of Apache's HTTP Server for Windows.
What to do
- Update bellsoft linux-lts to version 6.12.85-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Alpaquita:23 | bellsoft | linux-lts | >= 6.1.170-r0 |
| Alpaquita:25 | bellsoft | linux-lts |
>= 6.12.81-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
| Alpaquita:stream | bellsoft | linux-lts |
>= 6.12.80-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
Original title
BELL-CVE-2026-31611
osv CVSS3.1
8.6
- https://docs.bell-sw.com/security/cves/CVE-2026-31611 Vendor Advisory
Published: 3 May 2026 · Updated: 6 May 2026 · First seen: 6 May 2026