Search for vulnerabilities
Vulnerability details: VCID-w8xk-whq9-8baj
Vulnerability ID VCID-w8xk-whq9-8baj
Aliases CVE-2010-0408
Summary mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service.
Status Published
Exploitability 0.5
Weighted Severity 4.8
Risk 2.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.17081 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.17081 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.17081 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
epss 0.30054 https://api.first.org/data/v1/epss?cve=CVE-2010-0408
apache_httpd moderate https://httpd.apache.org/security/json/CVE-2010-0408.json
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0408.json
https://api.first.org/data/v1/epss?cve=CVE-2010-0408
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408
569905 https://bugzilla.redhat.com/show_bug.cgi?id=569905
CVE-2010-0408 https://httpd.apache.org/security/json/CVE-2010-0408.json
RHSA-2010:0168 https://access.redhat.com/errata/RHSA-2010:0168
RHSA-2010:0396 https://access.redhat.com/errata/RHSA-2010:0396
USN-908-1 https://usn.ubuntu.com/908-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.94758
EPSS Score 0.17081
Published At Aug. 1, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:28:51.904125+00:00 Apache HTTPD Importer Import https://httpd.apache.org/security/json/CVE-2010-0408.json 37.0.0