This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Nessus Scan (CRITICAL/HIGH/HIGH) - Apache 2.4.x < 2.4.56 Multiple Vulnerabilities

I'm getting one CRITICAL and two HIGH finding related to the version of Apache that Sophos is running. Is Sophos UTM 9 going to get an upgrade version of Apache anytime soon to clear these? Is there a safe way for me to upgrade myself? Here are the CVE's it cites:

CVE-2023-25690
CVE-2023-27522
CVE-2022-26377
CVE-2022-28330
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30522
CVE-2022-30556
CVE-2022-31813
CVE-2006-20001
CVE-2022-36760
CVE-2022-37436



This thread was automatically locked due to age.