CVE-2024-40898

HIGH

Apache HTTP Server < 2.4.62 - Server-Side Request Forgery via mod_rewrite on Windows

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2024-40898. PoCs published by TAM-K592, ForceEA001, anilpatel199n.

AI-analyzed exploit summary The repository contains two Python scripts designed to detect CVE-2024-40725 (HTTP Request Smuggling) and CVE-2024-40898 (SSL Verification Bypass) in Apache HTTP Server. The scripts send crafted requests to check for vulnerability indicators but do not exploit them.

Description

SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue.

Exploits (3)

github SCANNER 83 stars

by TAM-K592 · pythonpoc

https://github.com/TAM-K592/CVE-2024-40725-CVE-2024-40898

View Code ZIP pw:eip

The repository contains two Python scripts designed to detect CVE-2024-40725 (HTTP Request Smuggling) and CVE-2024-40898 (SSL Verification Bypass) in Apache HTTP Server. The scripts send crafted requests to check for vulnerability indicators but do not exploit them.

Classification

Scanner 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache HTTP Server 2.4.0 to 2.4.61

No auth needed

Prerequisites: Target server running vulnerable Apache HTTP Server version · Network access to the target server

MITRE ATT&CK

T1189 - Drive-by Compromise T1008 - Fallback Channels

devstral-2 · analyzed Feb 19, 2026 Full analysis →

nomisec SCANNER 2 stars

by ForceEA001 · poc

https://github.com/ForceEA001/CVE-2024-40898-SSL-Bypass-Detection

View Code ZIP pw:eip

The repository contains a Python script that scans for CVE-2024-40898 by attempting to bypass SSL certificate validation in Apache HTTP Server. It sends a HEAD request to targets listed in a file and checks for a '200 OK' response to determine potential vulnerability.

Classification

Scanner 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Theoretical

Target: Apache HTTP Server

No auth needed

Prerequisites: List of target host:port pairs in 'ssl-ports.txt'

MITRE ATT&CK

T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec SCANNER 1 stars

by anilpatel199n · poc

https://github.com/anilpatel199n/CVE-2024-40898

View Code ZIP pw:eip

The repository contains a Python script that scans for CVE-2024-40898, an SSL verification bypass vulnerability in Apache HTTP Server. It sends a HEAD request over an SSL connection and checks for a 200 OK response to infer potential vulnerability.

Classification

Scanner 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Theoretical

Target: Apache HTTP Server (version not specified)

No auth needed

Prerequisites: Network access to the target server · SSL/TLS service running on the target

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Mailing List

http://www.openwall.com/lists/oss-security/2024/07/17/7

Vendor Advisory

https://security.netapp.com/advisory/ntap-20240808-0006/

Vendor Advisory vendor-advisory

https://httpd.apache.org/security/vulnerabilities_24.html

Scores

CVSS v3 7.5

EPSS 0.0154

EPSS Percentile 71.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-918

Status published

Products (1)

apache/http_server < 2.4.62

Published Jul 18, 2024

Tracked Since Feb 18, 2026