Apache HTTP Server CVE-2020-13950 Denial of Service Vulnerability

description-logoDescription

Apache HTTP Server versions 2.4.41 to 2.4.46 mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted requests using both Content-Length and Transfer-Encoding headers, leading to a Denial of Service

affected-products-logoAffected Applications

HTTP Server

CVE References

CVE-2020-13950