CVE-2024-40898

Published Jul 18, 2024

Last updated 2 years ago

CVSS high 7.5
Server

Overview

Description
SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue. 
Source
security@apache.org
NVD status
Analyzed
Products
http_server

Risk scores

CVSS 3.1

Type
Primary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity
HIGH

Weaknesses

security@apache.org
CWE-918

Social media

Hype score
Not currently trending

  1. 217.153.162.211 Fałszowanie żądań po stronie serwera (SSRF) CVE-2024-40898 Miasto Pruszków Kod pocztowy 05-800 Wydawca certyfikatu WYDANE SAMODZIELNIE https://t.co/LTMLDfM4m3 https://t.co/WdIZmP8eEv https://t.co/Ck7IGR6wsB https://t.co/FtfNN7s7aN

    @KulinskiArkadi

    29 Aug 2025

    103 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. ip 217.153.162.211 City Pruszków Postal Code 05-800 Poland CVE-2024-40898 CVE-2024-36387 https://t.co/LTMLDfM4m3 https://t.co/wt97X1wdXk

    @KulinskiArkadi

    29 Aug 2025

    78 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    1 Reply

    0 Quotes

  3. 🚨 New PoC scanner released for CVE-2024-40898 – Apache HTTPD SSL cert validation bypass. 🧪 Multi-threaded ⚡ Fast, customizable 📜 CLI support 🔍 Detects weak TLS cert validation Test your perimeter now 👇 https://t.co/MC74sYb2lZ #infosec #CVE #cybersecurity #pe

    @illdeed

    7 Jul 2025

    82 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Arcserve UDP に同梱される、Apache HTTP Server の脆弱性 (CVE-2024-40898/CVE-2024-40725) 対応パッチが公開されました。Arcserve UDP 9.2 以前をご利用の方は適用をご検討ください。 P00003206 | Arcserve UDP 9.x | Patch for Apache httpd Vulnerabilities https://t.co/4EtoSZvbqW

    @Arcserve_jp

    19 Jan 2025

    71 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    1 Reply

    0 Quotes

Configurations

Related CVEs

  1. Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. While the vulnerability is in Oracle HTTP Server, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle HTTP Server accessible data as well as unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data. CVSS 3.1 Base Score 8.7 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N).CVE-2026-34291
  2. Microsoft SharePoint Server Improper Input Validation VulnerabilityCVE-2026-32201
  3. Apache ActiveMQ Improper Input Validation VulnerabilityCVE-2026-34197
  4. Fleet is open source device management software. Prior to 4.81.1, a command injection vulnerability in Fleet's software installer pipeline allows an attacker to achieve arbitrary code execution as root (macOS/Linux) or SYSTEM (Windows) on managed hosts when an uninstall is triggered for a crafted software package. Version 4.81.1 patches the issue.CVE-2026-34387
  5. Citrix NetScaler Out-of-Bounds Read VulnerabilityCVE-2026-3055

References

Sources include official advisories and independent security research.