Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Apache HTTP Server Unrestricted File Upload on Windows
BELL-CVE-2026-42258
Summary
A vulnerability in the Apache HTTP Server for Windows allows an attacker to upload malicious files, potentially leading to arbitrary code execution. This affects Apache HTTP Server installations on Windows systems. To mitigate this issue, consider upgrading to the latest version or applying a patch, and ensure your server configuration is secure.
What to do
- Update bellsoft ruby-net-imap to version 0.5.14-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Alpaquita:25 | bellsoft | ruby-net-imap |
>= 0.5.8-r0, < 0.5.14-r0 Fix: upgrade to 0.5.14-r0
|
| Alpaquita:stream | bellsoft | ruby-net-imap |
>= 0.4.8-r0, < 0.5.14-r0 Fix: upgrade to 0.5.14-r0
|
Original title
BELL-CVE-2026-42258
osv CVSS3.1
9.8
- https://docs.bell-sw.com/security/cves/CVE-2026-42258 Vendor Advisory
Published: 20 May 2026 · Updated: 22 May 2026 · First seen: 22 May 2026