APACHE httpd CVE-2019-10092 - No luck with the regular patches. Any other fix?
Hello everyone,
I am facing an issue with the Apache/httpd 2.4.6 in an Oracle Linux 7.9 Latest patch.
Apache is configured as a reverse proxy but when forcing any error, it shows the CVE-2019-10092 (Cross Site Script) error. (see image)
I am wondering if there is any additional patch to be applied to the apache/httpd or maye to Oracle Linux to fix that issue. All regular pacthes were applied with no success.
Judging by it, I believe all apaches are also vulnerable to this CVE.
Any help is very welcome!
Thanks.
Fabricio.