A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes (‘/’), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.

CPENameOperatorVersion
brocade fabric oslt9.0

CPE	Name	Operator	Version
	brocade fabric os	lt	9.0

alpinelinux 1

cve 1

debiancve 1

veracode 1

osv 3

openvas 22

ubuntucve 2

httpd 1

ibm 23

prion 1

redhatcve 2

nessus 40

redhat 5

oraclelinux 2

debian 3

centos 1

f5 1

fedora 3

altlinux 3

suse 3

archlinux 1

ubuntu 1

amazon 2

freebsd 1

kaspersky 1

symantec 1

oracle 5

alpinelinux

CVE-2019-0220

2019-06-11 21:29:00

cve

CVE-2019-0220

2019-06-11 21:29:00

debiancve

CVE-2019-0220

2019-06-11 21:29:00

veracode

Authorization Bypass

2019-08-08 00:07:37

osv

CVE-2019-0220

2019-06-11 21:29:00

apache2 - security update

2019-04-03 00:00:00

apache2 - security update

2019-04-03 00:00:00

openvas

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2019-2249)

2020-01-23 00:00:00

Apache HTTP Server < 2.4.39 URL Normalization Vulnerability - Windows

2019-04-08 00:00:00

Apache HTTP Server < 2.4.39 URL Normalization Vulnerability - Linux

2019-04-08 00:00:00

ubuntucve

CVE-2019-0220

2019-04-02 00:00:00

CVE-2021-30641

2021-06-10 00:00:00

httpd

Apache Httpd < 2.4.39 : Apache httpd URL normalization inconsistincy

2019-01-20 00:00:00

ibm

Security Bulletin: Vulnerability in IBM HTTP Server affects IBM Netezza Performance Portal

2019-10-18 03:36:34

Security Bulletin: A security vulnerability has been identified in IBM HTTP Server, a component of IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Network Manager (CVE-2019-0220)

2023-06-28 22:14:50

Security Bulletin: Multiple Vulnerabilities in IBM HTTP Server bundled with IBM Cloud Pak System (CVE-2019-0211 CVE-2019-0220)

2019-09-24 09:08:07

prion

Path traversal

2019-06-11 21:29:00

redhatcve

CVE-2019-0220

2019-04-02 11:19:54

CVE-2021-30641

2021-06-08 03:49:52

nessus

EulerOS 2.0 SP8 : httpd (EulerOS-SA-2019-2080)

2019-09-30 00:00:00

EulerOS 2.0 SP3 : httpd (EulerOS-SA-2019-2249)

2019-11-08 00:00:00

NewStart CGSL CORE 5.05 / MAIN 5.05 : httpd Multiple Vulnerabilities (NS-SA-2019-0250)

2019-12-31 00:00:00

redhat

(RHSA-2020:0251) Low: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP1 Security Update

2020-01-27 21:17:57

(RHSA-2019:2343) Moderate: httpd security and bug fix update

2019-08-06 08:27:25

(RHSA-2019:3436) Moderate: httpd:2.4 security and bug fix update

2019-11-05 17:46:04

oraclelinux

httpd:2.4 security and bug fix update

2019-11-14 00:00:00

httpd security and bug fix update

2019-08-13 00:00:00

debian

[SECURITY] [DLA 1748-1] apache2 security update

2019-04-03 14:29:59

[SECURITY] [DSA 4422-1] apache2 security update

2019-04-03 09:10:59

[SECURITY] [DSA 4422-1] apache2 security update

2019-04-03 09:10:59

centos

httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update

2019-09-18 20:21:26

K44591505 : Apache vulnerabilities CVE-2019-0196, CVE-2019-0197, and CVE-2019-0220

2019-05-07 00:00:00

fedora

[SECURITY] Fedora 28 Update: httpd-2.4.39-1.1.fc28

2019-05-14 01:06:32

[SECURITY] Fedora 29 Update: httpd-2.4.39-2.fc29

2019-04-06 19:44:50

[SECURITY] Fedora 30 Update: httpd-2.4.39-2.fc30

2019-04-05 00:03:02

altlinux

Security fix for the ALT Linux 10 package apache2 version 1:2.4.39-alt1

2019-04-02 00:00:00

Security fix for the ALT Linux 8 package apache2 version 1:2.4.39-alt1

2019-04-03 00:00:00

Security fix for the ALT Linux 9 package apache2 version 1:2.4.39-alt1

2019-04-02 00:00:00

suse

Security update for apache2 (important)

2019-04-23 00:00:00

Security update for apache2 (important)

2019-04-16 00:00:00

Security update for apache2 (important)

2019-04-11 00:00:00

archlinux

[ASA-201904-3] apache: multiple issues

2019-04-05 00:00:00

ubuntu

Apache HTTP Server vulnerabilities

2019-04-04 00:00:00

amazon

Important: httpd24

2019-04-05 20:05:00

Important: httpd

2019-04-04 21:49:00

freebsd

Apache -- Multiple vulnerabilities

2019-04-01 00:00:00

kaspersky

KLA12365 Multiple vulnerabilities in Apache HTTP Server

2019-04-01 00:00:00

symantec

Apache HTTP Server Vulnerabilities Jan 2019 - Apr 2020

2020-06-12 20:41:37

oracle

Oracle Critical Patch Update Advisory - October 2019

2020-01-22 00:00:00

Oracle Critical Patch Update Advisory - July 2019

2019-07-16 00:00:00

Oracle Critical Patch Update Advisory - July 2022

2022-07-19 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.1 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.3%

JSON

Related for BSNSA22346