Apache HTTP Server: Unauthenticated Remote Code Execution

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache HTTP Server: Unauthenticated Remote Code Execution

MINI-g27r-vrv8-hr8p

Summary

Apache HTTP Server versions before 2.4.41 are vulnerable to a remote code execution flaw. This means an attacker could potentially run malicious code on your server without needing a password. To fix this, update to the latest version of Apache HTTP Server.

What to do

Update mc to version 0.20250813.083541-r10.

Affected software

Vendor	Product	Affected versions	Fix available
–	mc	<= 0.20250813.083541-r10	0.20250813.083541-r10

Original title

MINI-g27r-vrv8-hr8p

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026