Apache HTTP Server: 2.4.67 → 2.4.68
Apache · upgrade impact · Official site ↗
Fixed by upgrading to 2.4.68 iVulnerabilities that affect 2.4.67 but no longer affect 2.4.68 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-42535 CRITICAL EPSS 0% ✓ cleared in 2.4.68 CVE-2026-34355 HIGH EPSS 0% ✓ cleared in 2.4.68 CVE-2026-34356 HIGH EPSS 0% ✓ cleared in 2.4.68 CVE-2026-42536 HIGH EPSS 0% ✓ cleared in 2.4.68 CVE-2026-29167 CRITICAL EPSS 0% ✓ cleared in 2.4.68 CVE-2026-29170 MEDIUM EPSS 0% ✓ cleared in 2.4.68 CVE-2026-49975 HIGH EPSS 0% ✓ cleared in 2.4.68 CVE-2026-48913 HIGH EPSS 0% ✓ cleared in 2.4.68