Vulnerabilities

Report: Latest: CVE-2026-28780 - Apache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

2026-05-06 0 views admin
Report: Latest: CVE-2026-28780 - Apache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

CVE ID :CVE-2026-28780 Published : May 5, 2026, 9:29 p.m. | 57 minutes ago Description :Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to mod_proxy_ajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Published
May 5, 2026
Affected Product: Apache

🏷️ Tags

reportlatest28780apacheserverbufferoverflowmod_proxy_ajpajp_msg_check_headercve

More from Vulnerabilities

Report: Update: CVE-2025-71251 - Apache IMS Remote Denial of Service Vulnerability

Report: Update: CVE-2025-71251 - Apache IMS Remote Denial of Service Vulnerability

2026-05-06 0
Report: CVE-2025-71252 -

Report: CVE-2025-71252 -

2026-05-06 0
Report: CVE-2025-71253 - - Analysis

Report: CVE-2025-71253 - - Analysis

2026-05-06 0
Report: Update: CVE-2025-71254 -

Report: Update: CVE-2025-71254 -

2026-05-06 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views