Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Apache HTTP Server Remote Code Execution in Logs
BELL-CVE-2026-43232
Summary
Apache HTTP Server versions 2.4.51 and earlier have a vulnerability in their log file handling. This could allow an attacker to execute malicious code on a server by manipulating log entries. To protect your server, update to the latest version of Apache HTTP Server or apply a patch to fix this issue.
What to do
- Update bellsoft linux-lts to version 6.12.80-r0.
- Update bellsoft linux-lts to version 6.12.76-r0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Alpaquita:25 | bellsoft | linux-lts |
>= 6.12.74-r0, < 6.12.80-r0 Fix: upgrade to 6.12.80-r0
|
| Alpaquita:stream | bellsoft | linux-lts |
>= 6.12.74-r0, < 6.12.76-r0 Fix: upgrade to 6.12.76-r0
|
Original title
BELL-CVE-2026-43232
osv CVSS3.1
8.8
- https://docs.bell-sw.com/security/cves/CVE-2026-43232 Vendor Advisory
Published: 9 May 2026 · Updated: 10 May 2026 · First seen: 10 May 2026