Unauthenticated Command Execution in Apache HTTP Server

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Unauthenticated Command Execution in Apache HTTP Server

BELL-CVE-2026-31410

Summary

The Apache HTTP Server has a vulnerability that allows an attacker to execute arbitrary commands without being authenticated. This means that anyone can potentially take control of the server. To protect your server, update to the latest version of Apache HTTP Server as soon as possible.

What to do

Update bellsoft linux-lts to version 6.12.80-r0.

Affected software

Ecosystem	Vendor	Product	Affected versions
Alpaquita:23	bellsoft	linux-lts	>= 6.1.167-r0
Alpaquita:25	bellsoft	linux-lts	>= 6.12.74-r0, < 6.12.80-r0 Fix: upgrade to 6.12.80-r0
Alpaquita:stream	bellsoft	linux-lts	>= 6.12.76-r0, < 6.12.80-r0 Fix: upgrade to 6.12.80-r0

Original title

BELL-CVE-2026-31410

https://docs.bell-sw.com/security/cves/CVE-2026-31410 Vendor Advisory

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026