apache2 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the apache2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Server-Side Request Forgery (SSRF)	<2.4.29-1ubuntu4.27+esm6
M Improper Neutralization	<2.4.29-1ubuntu4.27+esm6
M Improper Input Validation	<2.4.29-1ubuntu4.27+esm6
M Improper Access Control	<2.4.29-1ubuntu4.27+esm6
M Improper Authentication	<2.4.29-1ubuntu4.27+esm6
M Reachable Assertion	<2.4.29-1ubuntu4.27+esm6
M Memory Leak	<2.4.29-1ubuntu4.27+esm6
H Improper Encoding or Escaping of Output	<2.4.29-1ubuntu4.27+esm3
M NULL Pointer Dereference	<2.4.29-1ubuntu4.27+esm3
M CVE-2024-38476	<2.4.29-1ubuntu4.27+esm3
M Improper Encoding or Escaping of Output	<2.4.29-1ubuntu4.27+esm4
M CVE-2023-38709	<2.4.29-1ubuntu4.27+esm2
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.27+esm2
M CVE-2024-24795	<2.4.29-1ubuntu4.27+esm2
L Out-of-bounds Read	<2.4.29-1ubuntu4.27+esm1
M HTTP Request Smuggling	<2.4.29-1ubuntu4.27
M Out-of-bounds Write	<2.4.29-1ubuntu4.26
M HTTP Response Splitting	<2.4.29-1ubuntu4.26
M HTTP Request Smuggling	<2.4.29-1ubuntu4.26
M HTTP Request Smuggling	<2.4.29-1ubuntu4.24
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.24
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.25
M Insufficient Verification of Data Authenticity	<2.4.29-1ubuntu4.24
M CVE-2022-30556	<2.4.29-1ubuntu4.24
M Integer Overflow or Wraparound	<2.4.29-1ubuntu4.24
L Integer Overflow or Wraparound	<2.4.29-1ubuntu4.24
M Improper Initialization	<2.4.29-1ubuntu4.22
L Integer Overflow or Wraparound	<2.4.29-1ubuntu4.22
M HTTP Request Smuggling	<2.4.29-1ubuntu4.22
M Out-of-bounds Write	<2.4.29-1ubuntu4.22
M NULL Pointer Dereference	<2.4.29-1ubuntu4.21
M Out-of-bounds Write	<2.4.29-1ubuntu4.21
M Server-Side Request Forgery (SSRF)	<2.4.29-1ubuntu4.18
M Buffer Overflow	<2.4.29-1ubuntu4.17
M NULL Pointer Dereference	<2.4.29-1ubuntu4.17
M CVE-2021-33193	<2.4.29-1ubuntu4.17
M HTTP Request Smuggling	*
M NULL Pointer Dereference	<2.4.29-1ubuntu4.16
M Out-of-bounds Write	<2.4.29-1ubuntu4.16
M CVE-2021-30641	<2.4.29-1ubuntu4.16
L Out-of-bounds Write	<2.4.29-1ubuntu4.16
M HTTP Request Smuggling	<2.4.29-1ubuntu4.14
M HTTP Request Smuggling	<2.4.29-1ubuntu4.14
L Open Redirect	<2.4.29-1ubuntu4.14
L Use of Uninitialized Resource	<2.4.29-1ubuntu4.14
L Open Redirect	<2.4.29-1ubuntu4.10
L Use After Free	<2.4.29-1ubuntu4.10
M Out-of-bounds Write	<2.4.29-1ubuntu4.10
L Cross-site Scripting (XSS)	<2.4.29-1ubuntu4.10
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.10
H Use After Free	<2.4.29-1ubuntu4.6
L HTTP Request Smuggling	<2.4.29-1ubuntu4.10
L Use After Free	<2.4.29-1ubuntu4.6
M Race Condition	<2.4.29-1ubuntu4.6
L Use of Incorrectly-Resolved Name or Reference	<2.4.29-1ubuntu4.6
L Session Fixation	<2.4.29-1ubuntu4.6
L Resource Exhaustion	<2.4.29-1ubuntu4.6
M CVE-2018-11763	<2.4.29-1ubuntu4.4
L Resource Exhaustion	<2.4.29-1ubuntu4.4
L NULL Pointer Dereference	<2.4.29-1ubuntu4.4
L Improper Input Validation	<2.4.29-1ubuntu4.1
L Out-of-bounds Write	<2.4.29-1ubuntu4.1
L CVE-2018-1283	<2.4.29-1ubuntu4.1
L Out-of-bounds Read	<2.4.29-1ubuntu4.1
L Improper Authentication	<2.4.29-1ubuntu4.1
L Out-of-Bounds	<2.4.29-1ubuntu4.1

Vulnerability

Vulnerable Version

Server-Side Request Forgery (SSRF)

<2.4.29-1ubuntu4.27+esm6