CVE-2025-65082 | Apache HTTP Server up to 2.4.65 Environment Variable escape, meta, or control sequences

Inserito da Angelo Barbosa | Dic 4, 2025 | CVE

A vulnerability categorized as problematic has been discovered in Apache HTTP Server up to 2.4.65. This issue affects some unknown processing of the component Environment Variable Handler. The manipulation results in improper neutralization of escape, meta, or control sequences.

This vulnerability is reported as CVE-2025-65082. The attacker must have access to the local network to execute the attack. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2025-65082 | Apache HTTP Server up to 2.4.65 Environment Variable escape, meta, or control sequences

Post correlati

CVE-2025-62801 | jlowin fastmcp up to 2.12.x on Windows server_name os command injection (GHSA-rj5c-58rq-j5g5)

CVE-2025-37964 | Linux Kernel up to d1347977661342cb09a304a17701eb2d4aa21dec should_flush_tlb privilege escalation

CVE-2024-20140 | MediaTek MT8532 Power out-of-bounds write (MSV-2020 / ALPS09270402)

CVE-2025-62499 | Six Apart Movable Type Edit CategorySet of ContentType Page cross site scripting