Search for vulnerabilities
Vulnerability details: VCID-p2bz-bf4h-ckcn
Vulnerability ID VCID-p2bz-bf4h-ckcn
Aliases CVE-2014-0117
Summary A flaw was found in mod_proxy in httpd versions 2.4.6 to 2.4.9. A remote attacker could send a carefully crafted request to a server configured as a reverse proxy, and cause the child process to crash. This could lead to a denial of service against a threaded MPM.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.25373 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.25373 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
epss 0.52565 https://api.first.org/data/v1/epss?cve=CVE-2014-0117
apache_httpd moderate https://httpd.apache.org/security/json/CVE-2014-0117.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0117.json
https://api.first.org/data/v1/epss?cve=CVE-2014-0117
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0117
1120599 https://bugzilla.redhat.com/show_bug.cgi?id=1120599
CVE-2014-0117 https://httpd.apache.org/security/json/CVE-2014-0117.json
RHSA-2014:0921 https://access.redhat.com/errata/RHSA-2014:0921
RHSA-2014:0922 https://access.redhat.com/errata/RHSA-2014:0922
USN-2299-1 https://usn.ubuntu.com/2299-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.9602
EPSS Score 0.25373
Published At Aug. 2, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:28:59.261256+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2014-0117.json 37.0.0