The Apache Software Foundation (ASF) has released security
updates to address several security vulnerabilities in the HTTP
Server, including a severe vulnerability that could potentially
lead to remote code execution (RCE). The vulnerability, tracked as
CVE-2026-23918 (CVSS score: 8.8), has been described as a case of
"double free and possible RCE" in the HTTP/2 protocol handling.
This issue
Read more https://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html
