Report Incident
× Home Cybertech Africa 2023 2 DPO Rw-CSIRT Website About Rw-CSIRT Alerts Advisories About NCSA Documentation News & Events Topics Contact us Opportunities Privacy Policy

Alert: Apache HTTP Server Security Updates – July 2024

The Apache Software Foundation has released security updates to address multiple vulnerabilities in the Apache HTTP Server. Nine vulnerabilities have been patched, including CVE-2024-39884, CVE-2024-36387, CVE-2024-38477, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476 and CVE-2024-39573.
Affected Systems
Security Risks
If successfully exploited, the identified vulnerabilities in Apache HTTP Server products could lead to denial of service, information disclosure, and remote code execution on affected systems.
For the full list of security patches released by Apache Software, please refer to the official Apache HTTP Server website at
Recommended Actions
The National Cyber Security Authority (NCSA) recommends system administrators to:
  • Upgrade to the latest supported version of the installed software as soon as possible to ensure continued access to technical support and security patches.
The recommended software version to upgrade to is: Apache HTTP Server version 2.4.61
  • Before performing any update tasks, ensure that you have a backup of your data to prevent potential data loss during the upgrade process.
For further information and support, please contact the National Cyber Security Authority (NCSA) by email to or call us on 9009.

11 July 2024

© 2024 National Cyber Security Authority