A vulnerability categorized as critical has been discovered in Apache HTTP Server up to 2.4.67 . This impacts an unknown function of the component mod_xml2enc . Executing a manipulation can lead to heap-based buffer overflow. This vulnerability is tracked as CVE-2026-42536 . The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.