To address a critical flaw in its hugely popular web server that allows remote attackers to take control of a vulnerable system, the Apache Software Foundation has released an update.
The foundation has released version 2.4.52 of the Apache HTTP Server (webserver) that addresses two flaws tracked as CVE-2021-44790 and CVE-2021-44224. This has respective CVSS severity scores of 9.8 (critical) and 8.2 (high) out of a possible 10. A score of 9.8 is considered very bad. In recent weeks it has only been topped by the Log4j vulnerability, which is known as Log4Shell that had a severity score of 10 out of 10.
Read More: zdnet
For more such updates follow us on Google News ITsecuritywire News