CVE-2024-38474

CRITICAL

Apache HTTP Server < 2.4.60 - Script Execution via mod_rewrite Substitution Encoding Issue

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-38474. PoCs published by mrmtwoj.

AI-analyzed exploit summary This repository contains a Python-based scanner that tests for multiple Apache HTTP Server vulnerabilities, including CVE-2024-38474, by sending crafted HTTP requests to detect potential misconfigurations or weaknesses. It does not include exploit code for achieving RCE or other offensive actions but checks for vulnerable endpoints and response patterns.

Description

Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI. Users are recommended to upgrade to version 2.4.60, which fixes this issue. Some RewriteRules that capture and substitute unsafely will now fail unless rewrite flag "UnsafeAllow3F" is specified.

Exploits (1)

github SCANNER 123 stars

by mrmtwoj · pythonpoc

https://github.com/mrmtwoj/apache-vulnerability-testing

View Code ZIP pw:eip

This repository contains a Python-based scanner that tests for multiple Apache HTTP Server vulnerabilities, including CVE-2024-38474, by sending crafted HTTP requests to detect potential misconfigurations or weaknesses. It does not include exploit code for achieving RCE or other offensive actions but checks for vulnerable endpoints and response patterns.

Classification

Scanner 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache HTTP Server (various versions)

No auth needed

Prerequisites: Python 3.x · requests library · network access to target Apache server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory

https://security.netapp.com/advisory/ntap-20240712-0001/

Mailing List

http://www.openwall.com/lists/oss-security/2024/07/01/7

Vendor Advisory vendor-advisory

https://httpd.apache.org/security/vulnerabilities_24.html

Scores

CVSS v3 9.8

EPSS 0.0246

EPSS Percentile 82.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-116

Status published

Products (2)

apache/http_server 2.4.0 - 2.4.60

netapp/clustered_data_ontap 9.0

Published Jul 01, 2024

Tracked Since Feb 18, 2026