Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Apache HTTP Server Remote Code Execution Vulnerability
BELL-CVE-2026-31659
Summary
Apache HTTP Server versions 2.4.53 and earlier have a vulnerability that could allow an attacker to execute arbitrary code on a server. This could happen if a user visits a malicious website or clicks on a malicious link. Apache has released a patch to fix this issue, and users should update their servers as soon as possible.
What to do
- Update bellsoft linux-lts to version 6.1.170-r0.
- Update bellsoft linux-lts to version 6.12.85-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Alpaquita:23 | bellsoft | linux-lts |
>= 6.1.168-r0, < 6.1.170-r0 Fix: upgrade to 6.1.170-r0
|
| Alpaquita:25 | bellsoft | linux-lts |
>= 6.12.81-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
| Alpaquita:stream | bellsoft | linux-lts |
>= 6.12.80-r0, < 6.12.85-r0 Fix: upgrade to 6.12.85-r0
|
Original title
BELL-CVE-2026-31659
osv CVSS3.1
9.8
- https://docs.bell-sw.com/security/cves/CVE-2026-31659 Vendor Advisory
Published: 3 May 2026 · Updated: 6 May 2026 · First seen: 6 May 2026