Skip to the content.

Apache HTTP 2.4.49 Path Traversal and File Disclosure

05 Oct 2021 - Lennaert Oudshoorn

We just opened case DIVD-2021-00027 to address a vulnerability known as CVE-2021-41773 in the Apache HTTP Server Project that enable a Path Traversal and File Disclosure.

In the coming days we will be scanning worldwide to identify unpatched and thus vulnerable Apache HTTP servers and send notifications to our information sharing partners and individual network administrators.