Warning new unpatched Apache httpd security vulnerability

Friday, October 30, 2020, 8:44 GMT

Apache HTTP is an open source HTTP server built and supported for modern operating systems by the Apache Software Foundation.

There is a security flaw in httpd that emerges from authorizing SSL back-end worker program connections when the back-end key repository file ID is undisclosed.

image source: medium.com

Vulnerability:

At present, a repair measure to fix this protection issue has not been issued by the vendor. To find a workaround, it is advised that users of this app adopt the manufacturer’s homepage or link to the website: