URL has been copied successfully!
Apache fixes critical HTTP/2 double-free flaw CVE-2026-23918 enabling RCE
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Apache fixes critical HTTP/2 double-free flaw CVE-2026-23918 enabling RCE


Tags: , , , , , , ,

Apache fixed several flaws in HTTP Server, including CVE-2026-23918 (CVSS score of 8.8), a double-free bug in HTTP/2 that could allow remote code execution. The Apache Software Foundation has released updates to fix multiple vulnerabilities in its HTTP Server, including CVE-2026-23918 (CVSS score of 8.8). The issue involves a “double free” error in HTTP/2 handling […]

First seen on securityaffairs.com

Jump to article: securityaffairs.com/191759/security/apache-fixes-critical-http-2-double-free-flaw-cve-2026-23918-enabling-rce.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
  2. Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
  3. Attackers exploit zero-day RCE flaw in Cleo managed file transfer
  4. Tomcat PUT to active abuse as Apache deals with critical RCE flaw