A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security ...

A single malformed web request is all it takes. On May 4, 2026, the Apache Software Foundation quietly filed a vulnerability ...

The quality of the source code for a newer version of the Apache Web server software is on par with that of proprietary rivals at a similar stage of development, a new study finds. Stephen Shankland ...

CVE-2026-23918 is a high-severity Apache HTTP/2 double-free flaw affecting version 2.4.66. Learn the root cause, who's at ...

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP ...

The source code for a newer version of the Apache Web server software is of the same quality as proprietary competitors' at a similar stage of development, a new study has found. The review compared ...

Apache has released fixes for a dozen HTTP Server and MINA vulnerabilities, including critical and high-severity RCE flaws.

Proof-of-Concept (PoC) exploits for the Apache web server zero-day surfaced on the internet revealing that the vulnerability is far more critical than originally disclosed. These exploits show that ...

Microsoft has released the source code for the Web Sandbox runtime created by its Live Labs team under the Apache 2.0 license. Microsoft released a Community Technology Preview (CTP) test build of the ...

After four years of operating BigCouch in production, Cloudant has merged the BigCouch code back into the open source Apache CouchDB project. Cloudant provides a database-as-a-service and CouchDB ...