CVE-2019-0211

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-0211
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0211.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-0211
Downstream
Related
Published
2019-04-08T22:29:00.387Z
Modified
2026-02-20T07:17:11.148Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard. Non-Unix systems are not affected.

References

Affected packages

Git / github.com/apache/httpd

Affected ranges

Type
GIT
Repo
https://github.com/apache/httpd
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
8048373d9a8bd8c7237829b56a06485d5f5bf2e4
Introduced
47a9d8e8abf5697b4580c3ee2ade302b5c058fa6
Last affected
3090a40b568b675c6b09a4f008b421a747e2731c

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0211.json"