Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache HTTP Server Unauthenticated Remote Code Execution Vulnerability
BELL-CVE-2026-23274
Summary
Apache HTTP Server has a vulnerability that allows an attacker to execute code on a server without needing a password. This means someone could potentially take control of the server, leading to data theft or other malicious activities. Apache has released a patch to fix this issue, so it's essential to update the server software as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| bellsoft | linux-lts | > 6.1.164-r0 | – |
| bellsoft | linux-lts | > 6.12.74-r0 | – |
| bellsoft | linux-lts | > 6.12.76-r0 | – |
Original title
BELL-CVE-2026-23274
- https://docs.bell-sw.com/security/cves/CVE-2026-23274 Vendor Advisory
Published: 21 Mar 2026 · Updated: 21 Mar 2026 · First seen: 21 Mar 2026