Apache Releases Security Update for HTTP Server

Last Revised

The Apache Software Foundation has released Apache HTTP Server 2.4.52. This version addresses vulnerabilities—CVE-2021-44790 and CVE-2021-44224—one of which may allow a remote attacker to take control of an affected system.

CISA encourages users and administrators to review the Apache announcement and update as soon as possible.