Skip to main content

Apache HTTP Server CVE-2026-42535

| EUVDEUVD-2026-35090 CRITICAL
Exposure of Resource to Wrong Sphere (CWE-668)
2026-06-08 apache GHSA-644r-w2gh-w38h
Critical
Disputed · 9.1 NVD
Share

Severity by source

Sources disagree (Medium–Critical)
NVD PRIMARY
9.1 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
SUSE
MEDIUM
qualitative
Red Hat
6.5 MEDIUM
qualitative

vuln.today treats the vendor’s rating as authoritative. A higher third-party CVSS (e.g. CISA-ADP) is shown for transparency but does not drive the headline severity.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jun 09, 2026 - 13:22 vuln.today
CVSS changed
Jun 09, 2026 - 13:22 NVD
9.1 (None) 9.1 (CRITICAL)
CVE Published
Jun 08, 2026 - 15:14 nvd
CRITICAL 9.1
CVE Published
Jun 08, 2026 - 15:14 nvd
UNKNOWN (no severity yet)

DescriptionCVE.org

A path handling issue in mod_dav_fs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes.

Users are recommended to upgrade to version 2.4.68, which fixes this issue.

AnalysisAI

Improper path handling in the mod_dav_fs module of Apache HTTP Server 2.4.67 and earlier permits a WebDAV content author to directly manipulate trusted DAV property databases, leading to integrity violations and child process crashes. With a CVSS of 9.1 (AV:N/AC:L/PR:N/UI:N) and SSVC technical impact rated 'total' with automatable=yes, the flaw is highly impactful, though there is no public exploit identified at time of analysis and it is not listed in CISA KEV.

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify WebDAV-enabled Apache endpoint
Delivery
Obtain DAV write authorization
Exploit
Send crafted DAV request with traversal path
Execution
mod_dav_fs writes into trusted property database
Persist
Parser crashes httpd child on property read
Impact
Repeated worker crashes degrade availability

Vulnerability AssessmentAI

Exploitation The target Apache HTTP Server (≤2.4.67) must have mod_dav and mod_dav_fs loaded and a Location/Directory configured with 'Dav On' so that WebDAV methods (PUT, PROPPATCH, MOVE, COPY) are accepted on a reachable URL. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Risk signals are mixed but lean toward prioritized patching for any host actually running mod_dav_fs. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A user holding write privileges on a WebDAV-enabled location crafts a request whose target path is interpreted by mod_dav_fs as resolving into the internal DAV property database file rather than a normal content resource, and writes corrupting data into it. On subsequent property reads, the httpd child process attempting to parse the tampered database crashes, producing repeated worker terminations and degrading service availability; integrity of stored WebDAV properties is also compromised. …
Remediation Vendor-released patch: Apache HTTP Server 2.4.68 - upgrade immediately per the Apache advisory at https://httpd.apache.org/security/vulnerabilities_24.html and cross-referenced at https://nvd.nist.gov/vuln/detail/CVE-2026-42535 and https://seclists.org/oss-sec/2026/q2/837. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify Apache instances running 2.4.67 or earlier with mod_dav_fs enabled via 'httpd -M | grep dav_fs' and audit network exposure of WebDAV ports. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Affected
SUSE Linux Enterprise High Performance Computing 15 SP7 Affected
SUSE Linux Enterprise Module for Basesystem 15 SP7 Affected
SUSE Linux Enterprise Module for Package Hub 15 SP7 Affected
SUSE Linux Enterprise Module for Server Applications 15 SP7 Affected

Share

CVE-2026-42535 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy