CVE-2025-27701 – Apache HTTP Server Null Pointer Dereference

CVE ID : CVE-2025-27701

Published : May 27, 2025, 4:15 p.m. | 1 hour, 21 minutes ago

Description : In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array(). Later this values will be derefenced without prior NULL check, which can lead to local Temporary DoS or OOB Read, leading to information disclosure.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…