CVE-2025-35452: Apache HTTP Server FastCGI DoS漏洞

关键信息 CVE ID: CVE-2025-35452 状态: RESERVED CNA: Cybersecurity and Infrastructure Security Agency (CISA) of the United States Government 描述: The FastCGI protocol implementation in Apache HTTP Server 2.4.x before 2.4.51 allows remote attackers to cause a denial of service (memory consumption) via a crafted request. CVSS Score: - Base Score: 7.5 - Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 受影响的产品和版本: - Vendor: apache - Product: http_server - Version: 2.4.0 - Version: 2.4.1 - ... - Version: 2.4.50 - Vendor: redhat - Product: rhel_6 - Version: - Product: rhel_7 - Version: - ... - Product: rhel_8 - Version: - Vendor: suse - Product: sle_12 - Version: - Product: sle_15 - Version: - Vendor: ubuntu - Product: precise - Version: - Product: trusty - Version: - ... - Product: xenial - Version: 参考链接 https://example.com/link1 https://example.com/link2 ``` 从截图中可以获取到漏洞的CVE ID、状态、CNA、描述、CVSS评分以及受影响的产品和版本等关键信息。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2025-35452: Apache HTTP Server FastCGI DoS漏洞

目标达成感谢每一位支持者 — 我们达成了 100% 目标！