CVE-2026-43951NVD

Vulnerability Summary

Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages.

This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.

Severity Level

MEDIUM(6.5)

Published Date

Jun 8, 2026

Last Modified

Jun 11, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.13%Probability

Root Weakness (CWE)

CWE-125: Out-of-bounds Read ↗

The software reads data past the end, or before the beginning, of the intended buffer.

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityLow

IntegrityLow

AvailabilityNone

External References

https://httpd.apache.org/security/vulnerabilities_24.html
http://www.openwall.com/lists/oss-security/2026/06/08/10

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-43951NVD

Vulnerability Summary

External References