Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Apache HTTP Server Remote Code Execution in mod_lua
MINI-grff-37m6-8928
Summary
Apache HTTP Server's mod_lua module has a vulnerability that could allow an attacker to execute malicious code on a server, potentially leading to unauthorized access or data theft. This issue affects Apache HTTP Server users who use the mod_lua module, which is a component that allows the use of Lua scripts in Apache configurations. To mitigate this risk, users should update their Apache HTTP Server to the latest version, which includes a patch for this vulnerability.
What to do
- Update dex-fips to version 2.45.1-r1.
- Update dex-fips-oci-entrypoint to version 2.45.1-r1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | dex-fips | <= 2.45.1-r1 | 2.45.1-r1 |
| – | dex-fips-oci-entrypoint | <= 2.45.1-r1 | 2.45.1-r1 |
Original title
MINI-grff-37m6-8928
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026