Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-fg75-4dwv-9qb5
Vulnerability ID VCID-fg75-4dwv-9qb5
Aliases CVE-2013-5704
Summary HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. This fix adds the "MergeTrailers" directive to restore legacy behavior.
Status Published
Exploitability 0.5
Weighted Severity 2.1
Risk 1.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-287 Improper Authentication
System Score Found at
epss 0.65044 https://api.first.org/data/v1/epss?cve=CVE-2013-5704
epss 0.65044 https://api.first.org/data/v1/epss?cve=CVE-2013-5704
apache_httpd low https://httpd.apache.org/security/json/CVE-2013-5704.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json
https://api.first.org/data/v1/epss?cve=CVE-2013-5704
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704
1082903 https://bugzilla.redhat.com/show_bug.cgi?id=1082903
CVE-2013-5704 https://httpd.apache.org/security/json/CVE-2013-5704.json
GLSA-201504-03 https://security.gentoo.org/glsa/201504-03
RHSA-2014:1972 https://access.redhat.com/errata/RHSA-2014:1972
RHSA-2015:0325 https://access.redhat.com/errata/RHSA-2015:0325
RHSA-2015:1249 https://access.redhat.com/errata/RHSA-2015:1249
RHSA-2015:2661 https://access.redhat.com/errata/RHSA-2015:2661
RHSA-2016:0061 https://access.redhat.com/errata/RHSA-2016:0061
RHSA-2016:0062 https://access.redhat.com/errata/RHSA-2016:0062
USN-2523-1 https://usn.ubuntu.com/2523-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.98494
EPSS Score 0.65044
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-02T04:53:42.283716+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2013-5704.json 38.6.0