Search for vulnerabilities
Vulnerability details: VCID-khbv-4err-1fc7
Vulnerability ID VCID-khbv-4err-1fc7
Aliases CVE-2009-1890
Summary A denial of service flaw was found in the mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')
System Score Found at
epss 0.06927 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.06927 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
epss 0.26458 https://api.first.org/data/v1/epss?cve=CVE-2009-1890
apache_httpd important https://httpd.apache.org/security/json/CVE-2009-1890.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1890.json
https://api.first.org/data/v1/epss?cve=CVE-2009-1890
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890
509375 https://bugzilla.redhat.com/show_bug.cgi?id=509375
536718 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536718
CVE-2009-1890 https://httpd.apache.org/security/json/CVE-2009-1890.json
RHSA-2009:1148 https://access.redhat.com/errata/RHSA-2009:1148
RHSA-2009:1155 https://access.redhat.com/errata/RHSA-2009:1155
RHSA-2009:1160 https://access.redhat.com/errata/RHSA-2009:1160
USN-802-1 https://usn.ubuntu.com/802-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.91072
EPSS Score 0.06927
Published At Aug. 2, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:28:49.429992+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2009-1890.json 37.0.0