Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected. Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained.
Metrics
Affected Vendors & Products
Thu, 01 May 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
kev
|
Fri, 02 May 2025 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* |
Fri, 02 May 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Thu, 01 May 2025 23:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
kev
|
Thu, 13 Feb 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apache
Apache http Server Netapp Netapp ontap 9 |
|
CPEs | cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_9:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Apache
Apache http Server Netapp Netapp ontap 9 |
|
Metrics |
ssvc
|
Fri, 13 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 04 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 13 Aug 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat jboss Core Services
|
|
CPEs | cpe:/a:redhat:jboss_core_services:1 cpe:/a:redhat:jboss_core_services:1::el7 cpe:/a:redhat:jboss_core_services:1::el8 |
|
Vendors & Products |
Redhat jboss Core Services
|

Status: PUBLISHED
Assigner: apache
Published:
Updated: 2025-07-30T01:36:38.214Z
Reserved: 2024-06-17T11:09:56.096Z
Link: CVE-2024-38475

Updated: 2024-09-13T17:04:56.456Z

Status : Analyzed
Published: 2024-07-01T19:15:04.883
Modified: 2025-05-02T15:43:59.747
Link: CVE-2024-38475


No data.