Endpoint VulnerabilitySecurity Vulnerabilities Fixed in Apache HTTP Server 2.4.62
Description
Apache HTTP Server 2.4.62 has been released to address important security vulnerabilities, including a source code disclosure issue related to handlers configured via AddType (CVE-2024-40725) and an SSRF vulnerability with mod_rewrite in server/vhost context on Windows (CVE-2024-40898). Users are advised to upgrade to version 2.4.62 to mitigate these risks.
Affected Applications
Apache HTTP Server
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2024-08-13 | 1.00720 |
New
|
Apache HTTP Server |
| ID | 5771 |
| Created | Aug 13, 2024 |
| Description Updated |
Nov 12, 2025 |
| CVE ID | |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Apache |
| Patch | manual |
| Application | Apache HTTP Server |