Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache HTTP Server Unauthenticated Directory Traversal

ECHO-df10-54df-ba97

Summary

Apache HTTP Server's mod_proxy module allows an attacker to access sensitive files outside the intended web directory. This means that an attacker could potentially access and exploit sensitive data on the server. To fix this, update Apache HTTP Server to the latest version.

What to do

Update openssh to version 1:9.2p1-2+deb12u6.

Affected software

Ecosystem	Vendor	Product	Affected versions
Echo	–	openssh	< 1:9.2p1-2+deb12u6 Fix: upgrade to 1:9.2p1-2+deb12u6

Original title

ECHO-df10-54df-ba97

https://advisory.echohq.com/cve/CVE-2007-2768 URL

Published: 29 Jan 2026 · Updated: 10 Apr 2026 · First seen: 10 Apr 2026