ALPINE-CVE-2026-44119

Source
https://security.alpinelinux.org/vuln/CVE-2026-44119
Import Source
https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-44119.json
JSON Data
https://api.osv.dev/v1/vulns/ALPINE-CVE-2026-44119
Upstream
  • CVE-2026-44119
Published
2026-06-08T16:16:40.203Z
Modified
2026-07-06T17:30:06.528227398Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Improper Privilege Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .htaccess authors to read files with the privileges of the httpd user.

This issue affects Apache HTTP Server: from through 2.4.67.

Users are recommended to upgrade to version 2.4.68, which fixes the issue.

References

Affected packages

Alpine:v3.21 / apache2

Package

Name
apache2
Purl
pkg:apk/alpine/apache2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.68-r0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-44119.json"

Alpine:v3.22 / apache2

Package

Name
apache2
Purl
pkg:apk/alpine/apache2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.68-r0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-44119.json"

Alpine:v3.23 / apache2

Package

Name
apache2
Purl
pkg:apk/alpine/apache2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.68-r0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-44119.json"

Alpine:v3.24 / apache2

Package

Name
apache2
Purl
pkg:apk/alpine/apache2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.68-r0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-44119.json"