Lucene search
GoogleOSV:SUSE-SU-2024:2591-1HistoryJul 22, 2024 - 12:41 p.m.
Security update for apache2
2024-07-2212:41:41
Google
osv.dev
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.9
Confidence
Low
This update for apache2 fixes the following issues:
- CVE-2024-38475: Fixed improper escaping of output in mod_rewrite (bsc#1227268)
- CVE-2024-38476: Fixed server may use exploitable/malicious backend application output to run local handlers via internal redirect (bsc#1227269)
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2591-1)
2024-07-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2624-1)
2024-07-31 00:00:00
Ubuntu: Security Advisory (USN-6885-3)
2024-09-19 00:00:00
nessus
nessus
SUSE SLES15 Security Update : apache2 (SUSE-SU-2024:2591-1)
2024-07-23 00:00:00
osv
osv
Security update for apache2
2024-07-23 07:04:00
apache2 vulnerabilities
2024-09-18 09:36:05
Security update for apache2
2024-07-30 07:04:58
amazon
amazon
Important: httpd24
2024-07-17 22:27:00
Important: httpd
2024-07-18 02:00:00
cvelist
cvelist
vulnrichment
vulnrichment
redos
redos
ROS-20240801-01
2024-08-01 00:00:00
alpinelinux
alpinelinux
CVE-2024-38475
2024-07-01 19:15:04
CVE-2024-38476
2024-07-01 19:15:04
hackerone
hackerone
debiancve
debiancve
CVE-2024-38475
2024-07-01 19:15:04
CVE-2024-38476
2024-07-01 19:15:04
githubexploit
githubexploit
Exploit for CVE-2024-38475
2024-08-18 11:30:50
nvd
nvd
CVE-2024-38475
2024-07-01 19:15:04
CVE-2024-38476
2024-07-01 19:15:04
redhatcve
redhatcve
cve
cve
CVE-2024-38475
2024-07-01 19:15:04
CVE-2024-38476
2024-07-01 19:15:04
ubuntucve
ubuntucve
CVE-2024-38476
2024-07-01 00:00:00
CVE-2024-38475
2024-07-01 00:00:00
oraclelinux
oraclelinux
httpd security update
2024-08-08 00:00:00
httpd:2.4 security update
2024-08-13 00:00:00
httpd security update
2024-09-13 00:00:00
redhat
redhat
(RHSA-2024:5138) Important: httpd security update
2024-08-08 14:16:09
(RHSA-2024:6584) Important: httpd security update
2024-09-11 11:09:41
(RHSA-2024:5832) Important: httpd security update
2024-08-26 07:22:27
veracode
veracode
Server Side Request Forgery (SSRF)
2024-07-09 06:07:25
rocky
rocky
httpd security update
2024-08-21 14:53:29
httpd:2.4 security update
2024-08-21 14:52:31
httpd security update
2024-07-26 12:33:59
almalinux
almalinux
Important: httpd security update
2024-08-08 00:00:00
Important: httpd:2.4 security update
2024-08-12 00:00:00
Important: httpd security update
2024-07-23 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: httpd-2.4.61-1.fc39
2024-07-19 02:21:50
[SECURITY] Fedora 40 Update: httpd-2.4.61-1.fc40
2024-07-09 01:55:52
ibm
ibm
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2024-07-01 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2024-07-08 00:00:00
Apache HTTP Server regression
2024-07-11 00:00:00
kaspersky
kaspersky
KLA70199 Multiple vulnerabilities in Apache HTTP Server
2024-07-01 00:00:00
slackware
slackware
[slackware-security] httpd
2024-07-02 19:38:48
mageia
mageia
Updated apache packages fix security vulnerabilities
2024-07-09 10:01:06
photon
photon
Critical Photon OS Security Update - PHSA-2024-4.0-0651
2024-07-11 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0314
2024-07-11 00:00:00
Critical Photon OS Security Update - PHSA-2024-3.0-0771
2024-07-12 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.9
Confidence
Low
Related for OSV:SUSE-SU-2024:2591-1