CVE-2016-2161

CVE-2016-2161

Vendor Apache Software Foundation
Product Apache HTTP Server
Weakness CWE-823
Published July 27, 2017
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to mod_auth_digest can cause the server to crash, and each instance continues to crash even for subsequently valid requests.

Key dates

02Disclosure timeline

July 27, 2017 CVE published
September 16, 2024 Record updated