Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-2324HistoryMar 14, 2014 - 3:55 p.m.
CVE-2014-2324
2014-03-1415:55:00
Debian Security Bug Tracker
security-tracker.debian.org
15
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.956 High
EPSS
Percentile
99.4%
Multiple directory traversal vulnerabilities in (1) mod_evhost and (2) mod_simple_vhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a … (dot dot) in the host name, related to request_check_hostname.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lighttpd | < 1.4.33-1+nmu3 | lighttpd_1.4.33-1+nmu3_all.deb |
| Debian | 11 | all | lighttpd | < 1.4.33-1+nmu3 | lighttpd_1.4.33-1+nmu3_all.deb |
| Debian | 10 | all | lighttpd | < 1.4.33-1+nmu3 | lighttpd_1.4.33-1+nmu3_all.deb |
| Debian | 999 | all | lighttpd | < 1.4.33-1+nmu3 | lighttpd_1.4.33-1+nmu3_all.deb |
| Debian | 13 | all | lighttpd | < 1.4.33-1+nmu3 | lighttpd_1.4.33-1+nmu3_all.deb |
Related
ubuntucve
ubuntucve
CVE-2014-2324
2014-03-14 00:00:00
prion
prion
Directory traversal
2014-03-14 15:55:00
seebug
seebug
lighttpd目录遍历漏洞
2014-03-19 00:00:00
cve
cve
CVE-2014-2324
2014-03-14 15:55:00
openvas
openvas
Debian Security Advisory DSA 2877-1 (lighttpd - security update)
2014-03-12 00:00:00
SuSE Update for lighttpd openSUSE-SU-2014:0449-1 (lighttpd)
2014-04-03 00:00:00
Fedora Update for lighttpd FEDORA-2014-3947
2014-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: lighttpd-1.4.35-1.fc19
2014-03-25 08:14:59
[SECURITY] Fedora 20 Update: lighttpd-1.4.35-1.fc20
2014-03-25 08:15:56
debian
debian
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-13 04:28:29
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-13 04:28:29
nessus
nessus
Debian DSA-2877-1 : lighttpd - security update
2014-03-14 00:00:00
openSUSE Security Update : lighttpd (openSUSE-SU-2014:0449-1)
2014-06-13 00:00:00
lighttpd < 1.4.35 Multiple Vulnerabilities
2014-03-13 00:00:00
suse
suse
lighttpd to 1.4.35 (important)
2014-03-26 17:04:44
lighttpd to 1.4.35 (important)
2014-04-08 21:06:06
Security update for lighttpd (important)
2014-04-03 19:04:18
mageia
mageia
Updated lighttpd package fixes security vulnerabilities
2014-03-19 21:28:38
securityvulns
securityvulns
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-24 00:00:00
lighttpd security vulnerabilities
2014-03-24 00:00:00
osv
osv
lighttpd - security update
2014-03-12 00:00:00
amazon
amazon
Medium: lighttpd
2014-06-03 14:50:00
kitploit
kitploit
Vision2 - Nmap's XML result parse and NVD's CPE correlation to search CVE
2017-09-08 13:30:00
jvn
jvn
JVN#37417423: Multiple vulnerabilities in SolarView Compact
2021-02-19 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.956 High
EPSS
Percentile
99.4%
Related for DEBIANCVE:CVE-2014-2324