CVE-2026-24735 - Vulnerability Details

- Apache Answer: Revision API Improper Access Control leads to Information Disclosure

Description

Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer.

This issue affects Apache Answer: through 1.7.1.

An unauthenticated API endpoint incorrectly exposes full revision history for deleted content. This allows unauthorized user to retrieve restricted or sensitive information.
Users are recommended to upgrade to version 2.0.0, which fixes the issue.

Published: 2026-02-04

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An unauthenticated API endpoint in Apache Answer incorrectly exposes the full revision history for deleted content, allowing an unauthorized user to retrieve restricted or sensitive personal information. This flaw is identified as CWE‑359 (Information Exposure Through an Insecure API), leading to the leakage of private data. The vulnerability does not allow code execution or system compromise, but the data exposed can be highly confidential to users of the platform.

Affected Systems

The vulnerability affects all Apache Answer releases up to and including version 1.7.1. Users running these versions are exposed to the insecure revision history endpoint. Upgrading to version 2.0.0 or later resolves the issue and removes the exposed endpoint.

Risk and Exploitability

The vulnerability carries a CVSS score of 7.5, indicating a high likelihood of impact if exploited. The EPSS score is less than 1%, suggesting a low probability that attackers currently target this weakness. The CVE is not listed in the CISA KEV catalog. Attackers can reach the vulnerable endpoint without authentication, simply by sending an HTTP request to the revision API; no special privileges or credentials are required. Because the attack vector relies solely on a publicly available endpoint, it is straightforward to exploit in the absence of additional protective controls.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Apache Software Foundation

Apache Answer

unaffected

Version	Status	Constraints
`0`	affected	≤ 1.7.1

Configuration 1 [-]

cpe:2.3:a:apache:answer:*:*:*:*:*:*:*:*

No data.

Vendor	Product	Confidence	Versions
Apache	Answer	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the vendor‑issued upgrade to Apache Answer 2.0.0 or newer, which removes the insecure revision history endpoint.
Configure the web application or load balancer to require authentication and proper authorization for any Revision API request, preventing unauthorized users from accessing revision data.
Implement monitoring of API traffic to detect anomalous or repeated access attempts to the Revision endpoint and set alerts for potential exploitation attempts.

Generated by OpenCVE AI on April 17, 2026 at 23:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-5w5r-8xc6-2xhw	Apache Answer Exposure of Private Personal Information to an Unauthorized Actor vulnerability

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00021.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
http://www.openwall.com/lists/oss-security/2026/02/04/1
https://lists.apache.org/thread/whxloom7mpxlyt5wzdskflsg5mzdzd60

History

Fri, 06 Feb 2026 14:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:apache:answer::::::::

Wed, 04 Feb 2026 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apache Apache answer
Vendors & Products		Apache Apache answer

Wed, 04 Feb 2026 19:30:00 +0000

Type	Values Removed	Values Added
References		http://www.openwall.com/lists/oss-security/2026/02/04/1

Wed, 04 Feb 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 04 Feb 2026 11:15:00 +0000

Type	Values Removed	Values Added
Description		Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answer: through 1.7.1. An unauthenticated API endpoint incorrectly exposes full revision history for deleted content. This allows unauthorized user to retrieve restricted or sensitive information. Users are recommended to upgrade to version 2.0.0, which fixes the issue.
Title		Apache Answer: Revision API Improper Access Control leads to Information Disclosure
Weaknesses		CWE-359
References		https://lists.apache.org/thread/whxloom7mpxlyt5wzdskflsg5mzdzd60

Subscriptions

Apache Answer

MITRE

Status: PUBLISHED

Assigner: apache

Published: 2026-02-04T10:41:58.990Z

Updated: 2026-02-04T18:15:12.318Z

Reserved: 2026-01-26T16:04:07.853Z

Link: CVE-2026-24735

Vulnrichment

Updated: 2026-02-04T18:15:12.318Z

NVD

Status : Analyzed

Published: 2026-02-04T11:16:03.130

Modified: 2026-02-06T14:40:37.130

Link: CVE-2026-24735

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-18T00:00:09Z

Weaknesses

CWE-359

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object