CVE-2026-29168
Discovered by AISLEPUBLISHEDCWE-770
Description
Allocation of Resources Without Limits or Throttling vulnerability in Apache HTTP Server's mod_md via OCSP response data. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue.
CVSS Base Scores
CVSS v3.1(Primary)
7.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected Products
| Vendor | Product | Version | Status |
|---|---|---|---|
| Apache Software Foundation | Apache HTTP Server | 2.4.30 | affected |
Credits
- Pavel Kohout, Aisle Research, Aisle.com(finder)