Skip to content
Security Alerts

CVE-2026-28780: Heap-based buffer overflow in Apache HTTP Server mod_proxy_ajp

Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to mod_proxy_...

Marcin Godula Marcin Godula

Summary

ParameterValue
CVE IDCVE-2026-28780
Alert SourceGitHub Advisory - Critical Vulnerability
CVE Publication Year2026
Date Published2026-05-06
VendorApache
ProductHTTP Server
CVSS Score9.8 (critical)
EPSS Score0.0% (percentile: 5%)
CISA KEVNo
RansomwareNot confirmed

Vulnerability Description

Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to mod_proxy_ajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer.

This issue affects Apache HTTP Server: through 2.4.66.

Users are recommended to upgrade to version 2.4.67, which fixes the issue.

Required Actions

Apply vendor patches or mitigations as soon as available.

Who Is Affected?

This vulnerability affects HTTP Server by Apache. Check if your organization uses this software and requires updates.

Sources

Need help securing your systems? nFlo team offers vulnerability management and 24/7 SOC services. Contact us.

Learn More

Tags:

cve-2026-28780 critical apache vulnerability

Share:

Talk to an expert

Have questions about this topic? Get in touch with our specialist.

Sales Representative
Grzegorz Gnych

Grzegorz Gnych

Sales Representative

+48 664 003 003grzegorz.gnych@nflo.pl
Response within 24 hours
Free consultation
Individual approach

Providing your phone number will speed up contact.

Want to Reduce IT Risk and Costs?

Book a free consultation - we respond within 24h

Response in 24h Free quote No obligations
Book a Call +48 22 487 86 36

Or download free guide:

Download NIS2 Checklist