Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-49630

Опубликовано: 10 июл. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.5

Описание

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with ProxyPreserveHost set to "on".

РелизСтатусПримечание
devel

pending

2.4.64-1ubuntu1
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

needs-triage

esm-infra/focal

needs-triage

esm-infra/xenial

needs-triage

jammy

released

2.4.52-1ubuntu4.15
noble

released

2.4.58-1ubuntu8.7
plucky

released

2.4.63-1ubuntu1.1
upstream

released

2.4.64-1

Показывать по

EPSS

Процентиль: 48%
0.00249
Низкий

7.5 High

CVSS3

Связанные уязвимости

CVSS3: 7.5
redhat
23 дня назад

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with ProxyPreserveHost set to "on".

CVSS3: 7.5
nvd
27 дней назад

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with ProxyPreserveHost set to "on".

CVSS3: 7.5
msrc
21 день назад

Описание отсутствует

CVSS3: 7.5
debian
27 дней назад

In certain proxy configurations, a denial of service attack againstApa ...

CVSS3: 7.5
github
27 дней назад

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with ProxyPreserveHost set to "on".

EPSS

Процентиль: 48%
0.00249
Низкий

7.5 High

CVSS3