Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

Apache HTTP Server

The Apache HTTP Server Project is an effort to develop and maintain an open-source HTTP server for modern operating systems including UNIX and Windows. The goal of this project is to provide a secure efficient and extensible server that provides HTTP services in sync with the current HTTP standards.

Official Site:

https://httpd.apache.org/

Severity Summary:

Critical: 36 High: 108 Medium: 165 Low: 14
Reference
Title
Severity
CVE-2004-0488
Apache HTTP Server Out-of-bounds Write Vulnerability
High
CVE-1999-0071
Apache HTTP Server Other Vulnerability
High
CVE-1999-0045
Apache HTTP Server Other Vulnerability
High
CVE-2021-41524
Apache HTTP Server NULL Pointer Dereference Vulnerability
High
CVE-2022-22719
Apache HTTP Improper Initialization Server Vulnerability
High
CVE-2021-31618
Apache HTTP Server NULL Pointer Dereference Vulnerability
High
CVE-2020-9490
Apache HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
High
CVE-2009-2699
Apache HTTP Server Improper Locking Vulnerability
High
CVE-2006-3747
Apache HTTP Server Numeric Errors Vulnerability
High
CVE-2026-29169
Apache HTTP Server NULL Pointer Dereference Vulnerability
High
CVE-2024-42516
Apache HTTP Server Improper Input Validation Vulnerability
High
CVE-2024-39573
Apache HTTP Server Improper Input Validation Vulnerability
High
CVE-2024-38473
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability
High
CVE-2024-38472
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2023-38709
Apache HTTP Server Improper Validation of Specified Quantity in Input Vulnerability
High
CVE-2025-58098
Apache HTTP Server Insertion of Sensitive Information Into Sent Data Vulnerability
High
CVE-2025-59775
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2025-55753
Apache HTTP Server Integer Overflow or Wraparound Vulnerability
High
CVE-2026-34059
Apache HTTP Server Buffer Over-read Vulnerability
High
CVE-2026-24072
Apache HTTP Server Improper Privilege Management Vulnerability
High
CVE-2024-43394
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2026-23918
Apache HTTP Server Double Free Vulnerability
High
CVE-2026-29168
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2026-49975
Apache Memory Allocation with Excessive Size Value Vulnerability
High
CVE-2026-42536
Apache HTTP Server Heap-based Buffer Overflow Vulnerability
High
CVE-2026-34356
Apache HTTP Server Heap-based Buffer Overflow Vulnerability
High
CVE-2026-34355
Apache HTTP Server Heap-based Buffer Overflow Vulnerability
High
CVE-2026-48913
Apache HTTP Server Use After Free Vulnerability
High
CVE-2026-44186
Apache HTTP Server Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability
High
CVE-2026-44185
Apache HTTP Server Buffer Over-read Vulnerability
High