Apache – CVE-2019-10098

Home » Blog » Apache – CVE-2019-10098

Description

Kayran has detected that the version of Apache HTTP Server being used is vulnerable to Phishing
attacks and client-side attacks on browsers. Also known as CVE-2019-10098.

in mod_rewrite, certain self-referential mod_rewrite rules could be fooled by encoded newlines.
That will cause them to redirect users to an unexpected URL within the URL found in the request.

Severity/Score

CVSS Version 3.x – 6.1 Medium

Recommendation

To fix CVE-2019-10098, upgrade the version of Apache Server being used to 2.4.41.

References

https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10098

https://cwe.mitre.org/data/definitions/601.html

< Return to all Vulnerabilities

Cybersecurity – The thinnest security guards you will ever know

I can sit here all day long talking about vulnerabilities, attackers and other scary ways that puts our money and personal data at risk and

Backdoors – A Dangerous Back Entrance

So what are Backdoors? Why is that considered A Dangerous Back Entrance? Let’s find out… Also known as “Private Entrance” or a Trapdoor – A

Everything Ransomware

If you wish to know Everything Ransomware related, you’ve come to the right place! What is Ransomware? What can we do with it? Why it’s

HAR Files

In this article, I’ll talk and explain about HAR Files, so if you don’t know what they are, or, what do we use them for,

A security vulnerability our API hates

As you know, we’ve talked about many different and critical subjects related to application programming and knowing that it is very important to protect them,

A leaking faucet – Data Leaks\Breaches

Imagine you’re running a 400 million dollar company, you got the company’s car, insurance and maybe even dental care! Now imagine that all the information

WEB APPLICATION VULNERABILITY SCANNER