Apache HTTP Server allows unauthorized access to sensitive directories

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache HTTP Server allows unauthorized access to sensitive directories

BELL-CVE-2026-34073

Summary

The Apache HTTP Server has a flaw that lets attackers access sensitive directories on a website without permission. This could potentially allow an attacker to view or modify sensitive files, which could be a security risk if those files contain confidential information. To protect your website, make sure you're running the latest version of the Apache HTTP Server and follow best practices for directory permissions and access control.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
bellsoft	py3-cryptography	> 44.0.3-r0	–
bellsoft	py3-cryptography	> 39.0.2-r0	–

Original title

BELL-CVE-2026-34073

https://docs.bell-sw.com/security/cves/CVE-2026-34073 Vendor Advisory

Published: 1 Apr 2026 · Updated: 3 Apr 2026 · First seen: 3 Apr 2026