Apache Httpd CVE-2016-4979 Privilege Escalation Vulnerability
Description
For configurations enabling support for HTTP/2, SSL client certificate validation was not enforced if configured, allowing clients unauthorized access to protected resources over HTTP/2.
Affected Applications
Apache Httpd