Apache HTTP Server Unauthenticated Remote Code Execution

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache HTTP Server Unauthenticated Remote Code Execution

BELL-CVE-2026-23469

Summary

Apache HTTP Server allows an attacker to run malicious code on a server without a login. This could happen if a website is using an outdated version of the Apache HTTP Server software. To protect against this risk, update to the latest version of the software as soon as possible.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Ecosystem	Vendor	Product	Affected versions
Alpaquita:25	bellsoft	linux-lts	>= 6.12.80-r0
Alpaquita:stream	bellsoft	linux-lts	>= 6.12.80-r0

Original title

BELL-CVE-2026-23469

https://docs.bell-sw.com/security/cves/CVE-2026-23469 Vendor Advisory

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026