Somewhere north of 280 million websites still run on Apache HTTP Server, according to W3Techs usage statistics. In late May 2026, a newly published entry in the U.S. National Vulnerability Database ...

HTTP/2 Bomb exploits HPACK and flow control; a single client can hold 32GB memory in 20 seconds, causing server outages.

Apache Software Foundation has released HTTP Web Server 2.4.51 after researchers discovered that a previous security update didn't correctly fix an actively exploited vulnerability. Apache HTTP Server ...

The Apache Software Foundation has released an update to address a critical flaw in its hugely popular web server that allows remote attackers to take control of a vulnerable system. The first Apache ...

Wilmington, DE, June 04, 2026 (GLOBE NEWSWIRE) -- The Apache Software Foundation (ASF), the global home of open source software the world relies on, today announced that Apachy Livy has become a ...

Developers behind the Apache HTTP Server Project are urging users to apply a fix immediately to resolve a zero-day vulnerability. According to a security advisory dated October 5, the bug is known to ...

What's the difference between Tomcat and Apache? It's a question developers hear frequently. But, when worded that way, it contains some misleading assumptions. Normally, when people ask this question ...

Apache's HTTP web server is one of the most widely used web servers available today. The software is free and open-source, and it comes with a rich set of features. The Apache HTTP web server is also ...

A single malformed web request is all it takes. On May 4, 2026, the Apache Software Foundation quietly filed a vulnerability report with the National Vulnerability Database disclosing a critical flaw ...