A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security ...

A single malformed web request is all it takes. On May 4, 2026, the Apache Software Foundation quietly filed a vulnerability ...

The source code for a newer version of the Apache Web server software is of the same quality as proprietary competitors' at a similar stage of development, a new study has found. The review compared ...

The quality of the source code for a newer version of the Apache Web server software is on par with that of proprietary rivals at a similar stage of development, a new study finds. Stephen Shankland ...

Apache has released fixes for a dozen HTTP Server and MINA vulnerabilities, including critical and high-severity RCE flaws.

CVE-2026-23918 is a high-severity Apache HTTP/2 double-free flaw affecting version 2.4.66. Learn the root cause, who's at ...

Proof-of-Concept (PoC) exploits for the Apache web server zero-day surfaced on the internet revealing that the vulnerability is far more critical than originally disclosed. These exploits show that ...

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP ...

Some older versions of Apache Tomcat, the company’s open source web server and servlet container, are vulnerable to remote code execution. Some older versions of the open source Apache Tomcat web ...

In its new role as steward of the OpenOffice.org open source office suite, the Apache Software Foundation expects to offer an Apache-branded version of the package for developers in 2012. Apache also ...