Apache has issued urgent security patches to address 2 new security vulnerabilities—including a zero-day path traversal and file disclosure flaw (CVE-2021-41773) in HTTP servers that it said is being actively exploited in the wild.
Since some chapters host their own website and may use Apache, I’ve posted it here to alert them. I’ll also tag the @it-team to notify them. This forum uses Nginx as a web server, so we’re good.