VulnerableCode Vulnerability Details - VCID-1d24-sy5z-jfhh

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-1d24-sy5z-jfhh

Essentials
Severities (9)
References (13)
Severity details (1)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-1d24-sy5z-jfhh
Aliases	CVE-2013-5704
Summary	HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. This fix adds the "MergeTrailers" directive to restore legacy behavior.
Status	Published
Exploitability	0.5
Weighted Severity	2.1
Risk	1.1
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-287

Improper Authentication

System	Score	Found at
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss	0.64689	https://api.first.org/data/v1/epss?cve=CVE-2013-5704
apache_httpd	low	https://httpd.apache.org/security/json/CVE-2013-5704.json

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json
		https://api.first.org/data/v1/epss?cve=CVE-2013-5704
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704
1082903		https://bugzilla.redhat.com/show_bug.cgi?id=1082903
CVE-2013-5704		https://httpd.apache.org/security/json/CVE-2013-5704.json
GLSA-201504-03		https://security.gentoo.org/glsa/201504-03
RHSA-2014:1972		https://access.redhat.com/errata/RHSA-2014:1972
RHSA-2015:0325		https://access.redhat.com/errata/RHSA-2015:0325
RHSA-2015:1249		https://access.redhat.com/errata/RHSA-2015:1249
RHSA-2015:2661		https://access.redhat.com/errata/RHSA-2015:2661
RHSA-2016:0061		https://access.redhat.com/errata/RHSA-2016:0061
RHSA-2016:0062		https://access.redhat.com/errata/RHSA-2016:0062
USN-2523-1		https://usn.ubuntu.com/2523-1/

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.98446
EPSS Score	0.64689
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T12:36:18.995357+00:00	Apache HTTPD Importer	Import	https://httpd.apache.org/security/json/CVE-2013-5704.json	38.0.0