CVE-2024-40725

MEDIUM

Apache HTTP Server <2.4.61 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-40725. PoCs published by TAM-K592, soltanali0.

AI-analyzed exploit summary The repository contains two Python scripts designed to detect CVE-2024-40725 (HTTP Request Smuggling) and CVE-2024-40898 (SSL Verification Bypass) in Apache HTTP Server. The scripts send crafted requests to check for vulnerability indicators but do not exploit them.

Description

A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.62, which fixes this issue.

Exploits (2)

nomisec SCANNER 83 stars

by TAM-K592 · poc

https://github.com/TAM-K592/CVE-2024-40725-CVE-2024-40898

View Code ZIP pw:eip

The repository contains two Python scripts designed to detect CVE-2024-40725 (HTTP Request Smuggling) and CVE-2024-40898 (SSL Verification Bypass) in Apache HTTP Server. The scripts send crafted requests to check for vulnerability indicators but do not exploit them.

Classification

Scanner 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache HTTP Server 2.4.0 to 2.4.61

No auth needed

Prerequisites: Target server running vulnerable Apache HTTP Server version · Network access to the target server

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec SCANNER 12 stars

by soltanali0 · poc

https://github.com/soltanali0/CVE-2024-40725

View Code ZIP pw:eip

This repository contains a Python-based tool designed to detect HTTP Request Smuggling vulnerabilities (CVE-2024-40725) in Apache HTTP Server by sending crafted HTTP requests and analyzing response discrepancies. It does not include functional exploit code but provides a detection mechanism for identifying potential vulnerabilities.

Classification

Scanner 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Apache HTTP Server

No auth needed

Prerequisites: Python 3.7+ · requests library · target URL or list of URLs · wordlist for endpoint fuzzing

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory

https://httpd.apache.org/security/vulnerabilities_24.html

Vendor Advisory

https://security.netapp.com/advisory/ntap-20240808-0007/

Scores

CVSS v3 5.3

EPSS 0.0413

EPSS Percentile 89.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-668

Status published

Products (2)

apache/http_server 2.4.60

apache/http_server 2.4.61

Published Jul 18, 2024

Tracked Since Feb 18, 2026