A path handling issue in moddavfs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes.
Users are recommended to upgrade to version 2.4.68, which fixes this issue.
{
"severity": "Critical",
"cpes": [
"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*"
]
}