Intrusion Prevention

Apache.HTTP.Server.CVE-2025-53020.Memory.Exhaustion.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Apache HTTP Server.
The vulnerability is due to an error in the vulnerable application when handling maliciously crafted HTTP/2 requests. A remote attacker may be able to exploit this to cause a denial-of-service condition on an affected server.

Affected Products

Apache HTTP Server 2.4.17 prior to 2.4.64

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://httpd.apache.org/security/vulnerabilities_24.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2026-02-05	35.164	Modified	Default_action:pass:drop
2026-01-28	35.159	New

ID	60028
Created	Jan 20, 2026
Updated	Feb 04, 2026
CVE ID
Risk
Exploit Prediction Score	1.21%
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Apache
Profile Type	DoS

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Apache.HTTP.Server.CVE-2025-53020.Memory.Exhaustion.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Apache.HTTP.Server.CVE-2025-53020.Memory.Exhaustion.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center