CVE-1999-0236
Apache Http — NVD-CWE-noinfo
CVSS 7.5 High EPSS 0.09155
- CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Published: 1997-01-01T05:00:00.000
- Last modified: 2025-04-20T01:37:25.860
- Vendors: Apache
- Products: Http
- CWE: NVD-CWE-noinfo
CVE-1999-0236 — ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. [Severity (CVSS) 7.5 · Weakness: NVD-CWE-noinfo]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No items for this vendor.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.
🧠Explainer: What this vulnerability means
Summary: This vulnerability affects Http by Apache (CWE: unspecified).
Impact: Attackers could gain unauthorized access, execute code, or disrupt services.
Mitigation: Prioritize patching and consider temporary workarounds documented by the vendor.
CWE: NVD-CWE-noinfo
- https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0236 [Third Party Advisory]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0236 [Third Party Advisory]
No explicit mitigation/advisory links found in references.