This page lists publicly disclosed CVE vulnerabilities affecting apache mod_fcgid (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-1000104 | A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07. | [email protected] | 8.8 | 2.23% | 2019-12-03 | 2026-06-16 |
| CVE-2013-4365 | Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors. | [email protected] | 7.5 | 13.25% | 2013-10-17 | 2026-06-16 |
| CVE-2012-1181 | fcgid_spawn_ctl.c in the mod_fcgid module 2.3.6 for the Apache HTTP Server does not recognize the FcgidMaxProcessesPerClass directive for a virtual host, which makes it easier for remote attackers to cause a denial of service (memory consumption) via a series of HTTP requests that triggers a process count higher than the intended limit. | [email protected] | 5.0 | 4.86% | 2012-03-19 | 2026-06-16 |
| CVE-2010-3872 | A flaw was found in the mod_fcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgid_bucket.c file in the fcgid_header_bucket_read() function, resulting in an application crash. | [email protected] | 7.5 | 2.77% | 2010-11-22 | 2026-06-16 |