# Apache CVE-2006-20001 / CVE-2022-36760 / CVE-2022-37436

## What

On January 17, 2023, Apache released HTTP Server 2.4.55 to address CVE-2006-20001, CVE-2022-36760, and CVE-2022-37436.

## When/Why

FileWave reviewed these vulnerabilities and found that FileWave was not vulnerable to them.

## How

Two affected modules were not used, and the third issue was not relevant to FileWave's implementation. This page is retained as a historical FileWave security assessment; keep FileWave Server on a supported release so bundled components stay current.

## Related Links

- [https://httpd.apache.org/security/vulnerabilities\_24.html](https://httpd.apache.org/security/vulnerabilities_24.html)