Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
Apache HTTP Server Remote Code Execution via Malicious URL
BELL-CVE-2026-28418
Summary
The Apache HTTP Server has a vulnerability that could allow hackers to execute malicious code on your server if a user visits a specially crafted URL. This could potentially allow an attacker to gain control of your server, steal sensitive data, or disrupt your website. To protect yourself, update to the latest version of Apache HTTP Server as soon as possible.
What to do
- Update bellsoft vim to version 9.2.0078-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| bellsoft | vim | > 9.0.0820-r2 , <= 9.2.0078-r0 | 9.2.0078-r0 |
| bellsoft | vim | > 9.1.1415-r0 , <= 9.2.0078-r0 | 9.2.0078-r0 |
| bellsoft | vim | > 9.0.1395-r0 , <= 9.2.0078-r0 | 9.2.0078-r0 |
Original title
BELL-CVE-2026-28418
osv CVSS3.1
5.5
- https://docs.bell-sw.com/security/cves/CVE-2026-28418 Vendor Advisory
Published: 2 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026