Apache · Apache Http Server · CVE-2023-31122
**Name of the Vulnerable Software and Affected Versions**
Apache HTTP Server versions through 2.4.57
**Description**
The issue is related to an out-of-bounds read vulnerability in the mod macro module of the Apache HTTP Server. This vulnerability can be exploited by a remote attacker to cause a denial of service.
**Recommendations**
For Apache HTTP Server versions through 2.4.57, update to a version later than 2.4.57 to resolve the issue. As a temporary workaround, consider disabling the mod macro module until a patch is available. Restrict access to the mod macro module to minimize the risk of exploitation.