CVE-2026-23918 - Apache HTTP Server: http2: double free and possible RCE on early reset
CVE ID :CVE-2026-23918 Published : May 4, 2026, 3:16 p.m. | 53 minutes ago Description :Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes th
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 60–80% of your CVEs are unreachable. Here's how to prove it.
- [CYBER] Rajasthan Man Posing As "Love Guru" Arrested For Extortion, Blackmailing
- [CYBER] Trellix discloses data breach after source code repository hack
- [CYBER] CVE-2026-42809 - Apache Polaris: An authenticated low-privileged user can abuse Polaris staged table creation to mint broad temporary storage credentials for an attacker-chosen location before Polaris validates that location
- [CYBER] CVE-2026-42812 - Apache Polaris: No protection on `write.metadata.path`
- [CYBER] CVE-2026-37458 - FRRouting FRR Denial of Service