---

CVE-2019-0211 - log back

CVE-2019-0211 created at 25 Sep 2019 19:31:40
Severity	+ Critical
Remote	+ Remote
Type	+ Privilege escalation
Description	+ In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process (usually root) by manipulating the scoreboard.
References	+ https://httpd.apache.org/security/vulnerabilities_24.html
Notes