{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T23:53:09.544","vulnerabilities":[{"cve":{"id":"CVE-2006-20001","sourceIdentifier":"security@apache.org","published":"2023-01-17T20:15:11.177","lastModified":"2025-02-13T17:15:21.913","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash.\n\nThis issue affects Apache HTTP Server 2.4.54 and earlier."},{"lang":"es","value":"Un encabezado de solicitud If cuidadosamente manipulado puede provocar una lectura o escritura de memoria de un único byte cero en una ubicación de memoria del grupo (heap) más allá del valor del encabezado enviado. Esto podría provocar que el proceso se bloquee. Este problema afecta al servidor Apache HTTP 2.4.54 y versiones anteriores."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","versionEndExcluding":"2.4.55","matchCriteriaId":"E1AD829E-486E-4D6E-B323-F0FA299E587D"}]}]}],"references":[{"url":"https://httpd.apache.org/security/vulnerabilities_24.html","source":"security@apache.org","tags":["Release Notes","Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/202309-01","source":"security@apache.org"},{"url":"https://httpd.apache.org/security/vulnerabilities_24.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/202309-01","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20230316-0005/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}