GHSA-cjqj-vhhm-xq5x

Опубликовано: 23 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.3

Описание

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true".

Users are recommended to upgrade to version 2.4.65, which fixes the issue.

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true".

Users are recommended to upgrade to version 2.4.65, which fixes the issue.

Ссылки

EPSS

Процентиль: 45%

0.00223

Низкий

6.3 Medium

CVSS3

CVE ID

CVE-2025-54090

Дефекты

CWE-253

Связанные уязвимости

CVE-2025-54090

CVSS3: 6.3

ubuntu

6 месяцев назад

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue.

CVE-2025-54090

CVSS3: 4.8

redhat

6 месяцев назад

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue.

CVE-2025-54090

CVSS3: 6.3

nvd

6 месяцев назад

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue.

CVE-2025-54090

CVSS3: 6.3

msrc

5 месяцев назад

Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64

CVE-2025-54090

CVSS3: 6.3

debian

6 месяцев назад

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr .. ...

EPSS

Процентиль: 45%

0.00223

Низкий

6.3 Medium

CVSS3

CVE ID

CVE-2025-54090

Дефекты

CWE-253