Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of service via malicious HTTP requests. This issue affects Apache HTTP Server: from 2.4.17 through 2.4.67.

The version of mod_http2 installed on the remote host is prior to 2.0.42-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3372 advisory.

    Denial of service in HTTP/2 cookie request header counting (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1859 advisory.

    Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already     exhausted.

    This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67. (CVE-2026-48913)

    Denial of service in HTTP/2 cookie request header counting (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:27200 advisory.

    Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This     software, such as Apache HTTP Server, is common to multiple JBoss middleware products and packaged under     Red Hat JBoss Core Services, to allow for faster distribution of updates and for a more consistent update     experience.

    This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 4 serves as a     replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 3, and includes bug     fixes and enhancements, which are documented in the Release Notes linked to in the References section.

    Security Fix(es):

    * jbcs-httpd24-httpd: Apache HTTP Server mod_proxy_ajp: Arbitrary code execution via heap-based buffer     overflow (CVE-2026-28780)
    * jbcs-httpd24-httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack     (CVE-2026-49975)
    * jbcs-httpd24-mod_http2: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack     (CVE-2026-49975)
    * mod_proxy_ajp.so: heap-based buffer over-read due to missing null-termination check (CVE-2026-34032)
    * mod_proxy_ajp.so: heap-based buffer over-read and memory disclosure in ajp_parse_data() (CVE-2026-34059)
    * mod_authn_socache.so: NULL pointer dereference can cause a child process crash (CVE-2026-33007)
    * mod_proxy_ajp.so: off-by-one out-of-bounds reads in AJP getter functions (CVE-2026-33857)
    * mod_dav_lock.so: NULL pointer dereference via specially crafted request (CVE-2026-29169)
    * jbcs-httpd24-mod_md: unrestricted OCSP response leads to resource exhaustion (CVE-2026-29168)
    * jbcs-httpd24-httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase (CVE-2025-53020)
    * nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination     (CVE-2026-27135)

    A Red Hat Security Bulletin which addresses further details about this flaw is available in the References     section.

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-25090 advisory.

    - Resolves: RHEL-173558 - httpd:2.4/httpd: Apache HTTP Server mod_proxy_ajp:
      Arbitrary code execution via heap-based buffer overflow (CVE-2026-28780)
    - Resolves: RHEL-175074 - httpd:2.4/httpd: NULL pointer dereference can       cause a child process crash (CVE-2026-33007)
    - Resolves: RHEL-175088 - httpd:2.4/httpd: off-by-one out-of-bounds reads       in AJP getter functions (CVE-2026-33857)
    - Resolves: RHEL-175620 - httpd:2.4/httpd: NULL pointer dereference via       specially crafted request (CVE-2026-29169)
    - Resolves: RHEL-175055 - httpd: heap-based buffer over-read and memory       disclosure in ajp_parse_data() (CVE-2026-34059)
    - Resolves: RHEL-135054 - httpd: Apache HTTP Server: mod_userdir+suexec bypass       via AllowOverride FileInfo (CVE-2025-66200)
    - Resolves: RHEL-135039 - httpd: Apache HTTP Server: CGI environment variable       override (CVE-2025-65082)
    - Resolves: RHEL-134471 - httpd: Apache HTTP Server: Server Side Includes adds       query string to #exec cmd=... (CVE-2025-58098)
    - Resolves: RHEL-127073 - mod_ssl: allow more fine grained SSL SNI vhost check       to avoid unnecessary 421 errors after CVE-2025-23048 fix
    - Resolves: RHEL-99944 - CVE-2025-49812 httpd: HTTP Session Hijack via a TLS upgrade
    - Resolves: RHEL-99969 - CVE-2024-47252 httpd: insufficient escaping of       user-supplied data in mod_ssl
    - Resolves: RHEL-99961 - CVE-2025-23048 httpd: access control bypass by trusted       clients is possible using TLS 1.3 session resumption
    - Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend       applications whose response headers are malicious or exploitable (CVE-2024-38476)
    - Resolves: RHEL-53022 - Regression introduced by CVE-2024-38474 fix
    - Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue       in mod_rewrite (CVE-2024-38474)
    - Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in       mod_proxy (CVE-2024-38473)
    - Resolves: RHEL-45777 - httpd:2.4/httpd: Improper escaping of output       in mod_rewrite (CVE-2024-38475)
    - Resolves: RHEL-45758 - httpd:2.4/httpd: null pointer dereference       in mod_proxy (CVE-2024-38477)
    - Resolves: RHEL-45743 - httpd:2.4/httpd: Potential SSRF       in mod_rewrite (CVE-2024-39573)
    - Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response       splitting (CVE-2023-38709)

    mod_http2
    - Resolves: RHEL-182418 - mod_http2: HTTP/2: Remote Denial of Service via       compression bomb and Slowloris-style attack (CVE-2026-49975)
    - Resolves: RHEL-166277 - httpd:2.4/httpd: Apache HTTP Server: HTTP/2 DoS by       Memory Increase (CVE-2025-53020)
    - Resolves: RHEL-105186 - httpd:2.4/httpd: untrusted input from a client causes       an assertion to fail in the Apache mod_proxy_http2 module (CVE-2025-49630)
    - Resolves: RHEL-58454 - mod_proxy_http2 failures after CVE-2024-38477 fix
    - Resolves: RHEL-29817 - httpd:2.4/mod_http2: httpd: CONTINUATION frames       DoS (CVE-2024-27316)
    - Resolves: RHEL-13367 - httpd:2.4/mod_http2: reset requests exhaust memory       (incomplete fix of CVE-2023-44487)(CVE-2023-45802)
    - Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting       with mod_rewrite and mod_proxy
    - Resolves: RHEL-134487 - httpd:2.4/httpd: Apache HTTP Server: mod_md (ACME),       unintended retry intervals (CVE-2025-55753)

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its banner, the version of Apache running on the remote host is 2.4.x prior to 2.4.68. It is, therefore, affected by multiple vulnerabilities:

- Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration. (CVE-2026-29167)

- A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation when listing FTP directory contents either via forward or reverse proxy configuration. (CVE-2026-29170)

- A buffer overflow in mod_proxy_html in Apache HTTP Server allows an attack by an untrusted backend. (CVE-2026-34355)

- Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie. (CVE-2026-34356)

- A path handling issue in mod_dav_fs allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes. (CVE-2026-42535)

- Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted content. (CVE-2026-42536)

- Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. (CVE-2026-43951)

- Improper Privilege Management vulnerability in Apache HTTP Server allows local .htaccess authors to read files with the privileges of the httpd user. (CVE-2026-44119)

- Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server. (CVE-2026-44185)

- Loop with Unreachable Exit Condition vulnerability in the mod_proxy_ftp module in Apache HTTP Server with an attacker controlled backend FTP server. (CVE-2026-44186)

- Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. (CVE-2026-44631)

- Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already exhausted. (CVE-2026-48913)

- Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http2 leads to denial of service via malicious HTTP requests. (CVE-2026-49975)

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

An update of the httpd package has been released.

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:25225 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0498 advisory.

    Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:

    CVE-2026-49975:
    Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial     of service via malicious HTTP requests.

    This issue affects Apache HTTP Server: from 2.4.17 through 2.4.67.

Tenable has extracted the preceding description block directly from the Tencent Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-786:01 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:25057 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the RockyLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:25225 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the RockyLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:25090 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:25057 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:25225 advisory.

    The mod_h2 Apache httpd module implements the HTTP2 protocol (h2+h2c) on top of libnghttp2 for httpd 2.4     servers.

    Security Fix(es):

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:25090 advisory.

    The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.

    Security Fix(es):

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:25090 advisory.

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

Tenable has extracted the preceding description block directly from the RockyLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8398-1 advisory.

    It was discovered that nginx incorrectly handled certain cookie headers in the HTTP/2 implementation. A     remote attacker could possibly use this issue to cause nginx to consume excessive resources, resulting in     a denial of service.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:25057 advisory.

    The mod_h2 Apache httpd module implements the HTTP2 protocol (h2+h2c) on top of libnghttp2 for httpd 2.4     servers.

    Security Fix(es):

    * httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack (CVE-2026-49975)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Apache httpd installed on the remote host is prior to 2.4.68. It is, therefore, affected by multiple vulnerabilities as referenced in the 2.4.68 advisory.

  - CVE-2026-49975, also known as HTTP/2 Bomb, is a remote denial-of-service exploit against most major web     servers, including: nginx, Apache httpd, Microsoft IIS, Envoy, Cloudflare Pingor. The vulnerable behavior     exists in each server's default HTTP/2 configuration (CVE-2026-49975)

  - mod_xml2enc heap overflow: Heap-based Buffer Overflow vulnerability in Apache HTTP Server with     mod_xml2enc, xml2StartParse, and untrusted content This issue affects Apache HTTP Server: from 2.4.0     through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.
    Acknowledgements: finder: Zhenpeng (Leo) Lin at depthfirst (CVE-2026-42536)

  - OOB Read in `merge_response_headers` can cause crash: Out-of-bounds Read vulnerability in Apache HTTP     Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP     Server: from 2.4.0 through 2.4.67. Acknowledgements: finder: Zhenpeng (Leo) Lin at depthfirst     (CVE-2026-43951)

  - escalation of privilege through expressions in .htaccess in multiple modules: Improper Privilege     Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .htaccess authors to read     files with the privileges of the httpd user. This issue affects Apache HTTP Server: from through 2.4.67.
    Users are recommended to upgrade to version 2.4.68, which fixes the issue. Acknowledgements:
    (CVE-2026-44119)

  - Stack Buffer Over-Read in mod_ssl OCSP `send_request`: Buffer Over-read vulnerability in Apache HTTP     Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP     Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the     issue. Acknowledgements: finder: Zhenpeng (Leo) Lin at depthfirst (CVE-2026-44185)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4620 advisory.

    - -------------------------------------------------------------------------     Debian LTS Advisory DLA-4620-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/                   Bastien Roucaris     June 07, 2026                                 https://wiki.debian.org/LTS
    - -------------------------------------------------------------------------

    Package        : apache2     Version        : 2.4.67-1~deb11u2     CVE ID         : CVE-2026-49975     Debian Bug     : 1138750

    It was discovered that incorrect cookie header accounting in the HTTP/2     implementation of the Apache HTTP server may result in denial of service     (excessive resources consumption).

    For Debian 11 bullseye, this problem has been fixed in version     2.4.67-1~deb11u2.

    We recommend that you upgrade your apache2 packages.

    For the detailed security status of apache2 please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/apache2

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6323 advisory.

    - -------------------------------------------------------------------------     Debian Security Advisory DSA-6323-1                   security@debian.org     https://www.debian.org/security/                     Salvatore Bonaccorso     June 06, 2026                         https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : apache2     CVE ID         : CVE-2026-49975     Debian Bug     : 1138750

    It was discovered that incorrect cookie header accounting in the HTTP/2     implementation of the Apache HTTP server may result in denial of service     (excessive resources consumption).

    For the oldstable distribution (bookworm), this problem has been fixed     in version 2.4.67-1~deb12u3.

    For the stable distribution (trixie), this problem has been fixed in     version 2.4.67-1~deb13u3.

    We recommend that you upgrade your apache2 packages.

    For the detailed security status of apache2 please refer to its security     tracker page at:
    https://security-tracker.debian.org/tracker/apache2

    Further information about Debian Security Advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0d6d9d9b-5feb-11f1-8607-8447094a420f advisory.

    Calif security reports:
    Remote DoS in mod_http2

Tenable has extracted the preceding description block directly from the FreeBSD security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of httpd installed on the remote host is prior to 2.4.67. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-154-01 advisory.

    New httpd packages are available for Slackware 15.0 and -current to fix a security issue.

Tenable has extracted the preceding description block directly from the httpd security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8384-1 advisory.

    It was discovered that Apache HTTP Server incorrectly handled certain cookie headers in the HTTP/2     implementation. A remote attacker could possibly use this issue to cause Apache HTTP Server to consume     excessive resources, resulting in a denial of service.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial     of service via malicious HTTP requests. This issue affects Apache HTTP Server: from 2.4.17 through 2.4.67.
    (CVE-2026-49975)

  - CVE-2026-49975, also known as HTTP/2 Bomb, is a remote denial-of-service exploit against most major web     servers, including: nginx, Apache httpd, Microsoft IIS, Envoy, Cloudflare Pingor. The vulnerable behavior     exists in each server's default HTTP/2 configuration (CVE-2026-49975)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
322081	Amazon Linux 2 : mod_http2, --advisory ALAS2-2026-3372 (ALAS-2026-3372)	Nessus	Amazon Linux Local Security Checks	high
322019	Amazon Linux 2023 : mod_http2 (ALAS2023-2026-1859)	Nessus	Amazon Linux Local Security Checks	high
321959	RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP4 (RHSA-2026:27200)	Nessus	Red Hat Local Security Checks	high
321487	Oracle Linux 8 : httpd:2.4 (ELSA-2026-25090)	Nessus	Oracle Linux Local Security Checks	high
115263	Apache 2.4.x < 2.4.68 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	high
321208	Photon OS 5.0: Httpd PHSA-2026-5.0-0881	Nessus	PhotonOS Local Security Checks	high
321113	AlmaLinux 10 : mod_http2 (ALSA-2026:25225)	Nessus	Alma Linux Local Security Checks	high
321108	TencentOS Server 3: httpd:2.4 (TSSA-2026:0498)	Nessus	Tencent Local Security Checks	high
321103	MiracleLinux 8 : httpd:2.4 (AXSA:2026-786:01)	Nessus	Miracle Linux Local Security Checks	high
320950	RockyLinux 9 : mod_http2 (RLSA-2026:25057)	Nessus	Rocky Linux Local Security Checks	high
320941	RockyLinux 10 : mod_http2 (RLSA-2026:25225)	Nessus	Rocky Linux Local Security Checks	high
320643	AlmaLinux 8 : httpd:2.4 (ALSA-2026:25090)	Nessus	Alma Linux Local Security Checks	high
320642	AlmaLinux 9 : mod_http2 (ALSA-2026:25057)	Nessus	Alma Linux Local Security Checks	high
320565	RHEL 10 : mod_http2 (RHSA-2026:25225)	Nessus	Red Hat Local Security Checks	high
320514	RHEL 8 : httpd:2.4 (RHSA-2026:25090)	Nessus	Red Hat Local Security Checks	high
320506	RockyLinux 8 : httpd:2.4 (RLSA-2026:25090)	Nessus	Rocky Linux Local Security Checks	high
320391	Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : nginx vulnerability (USN-8398-1)	Nessus	Ubuntu Local Security Checks	high
320373	RHEL 9 : mod_http2 (RHSA-2026:25057)	Nessus	Red Hat Local Security Checks	high
319665	Apache 2.4.x < 2.4.68 Multiple Vulnerabilities	Nessus	Web Servers	high
319620	Debian dla-4620 : apache2 - security update	Nessus	Debian Local Security Checks	high
319609	Debian dsa-6323 : apache2 - security update	Nessus	Debian Local Security Checks	high
319310	FreeBSD : Apache httpd -- DoS exploit in HTTP/2 (0d6d9d9b-5feb-11f1-8607-8447094a420f)	Nessus	FreeBSD Local Security Checks	high
319299	Slackware Linux 15.0 / current httpd Vulnerability (SSA:2026-154-01)	Nessus	Slackware Local Security Checks	high
318848	Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Apache HTTP Server vulnerability (USN-8384-1)	Nessus	Ubuntu Local Security Checks	high
318375	Linux Distros Unpatched Vulnerability : CVE-2026-49975	Nessus	Misc.	high

Detections

Analytics

CVE-2026-49975

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high