CVE Catalog

CVE-2026-43951

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.16%

37th percentile - higher than 37% of all known CVEs

Summary

CVE-2026-43951 describes an out-of-bounds read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. It affects Apache HTTP Server versions from 2.4.0 to 2.4.67.

Risk Assessment

This vulnerability may lead to the disclosure of sensitive information, posing a threat to the organization's data security.

Recommendation

It is recommended to update the Apache HTTP Server to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS