Lucene search
K

92 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 9 : httpd-2.4.62-1.el9 (AXSA:2024-9215:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9215:08 advisory. httpd: HTTP response splitting CVE-2023-38709 httpd: HTTP Response Splitting in multiple modules CVE-2024-24795 Tenable has extracted the preceding...

7.3CVSS8AI score0.03914EPSS
Exploits0References3
Debian
Debian
added 2025/05/09 12:24 p.m.7 views

[SECURITY] [DLA 4158-1] fossil security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4158-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler May 09, 2025 https://wiki.debian.org/LTS -...

6.3CVSS6.8AI score0.02874EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/09 12:0 a.m.6 views

Debian dla-4158 : fossil - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4158 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4158-1 [email protected] https://www.debian.org/lts/security/...

6.3CVSS6.9AI score0.02874EPSS
Exploits0References4
OSV
OSV
added 2025/03/17 8:16 p.m.32 views

RLSA-2024:9306 Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: HTTP response splitting CVE-2023-38709 httpd: HTTP Response Splitting in multiple modules CVE-2024-24795 For more details about the security issues, including the impact, a...

7.3CVSS6.7AI score0.03914EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-24795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that can inject malicious response headers into backend applications to cau...

6.3CVSS6.6AI score0.02874EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.23 views

openSUSE Security Advisory (SUSE-SU-2024:1868-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.91327EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.8 views

Azure Linux 3.0 Security Update: httpd (CVE-2024-24795)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24795 advisory. - HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that can inject maliciou...

6.3CVSS6.8AI score0.02874EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/11/12 9:33 a.m.46 views

Moderate: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.3CVSS6.7AI score0.03914EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.32 views

RHEL 9 : httpd (RHSA-2024:9306)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9306 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: HTTP response...

7.3CVSS7.2AI score0.03914EPSS
Exploits0References12
AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.43 views

Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: HTTP response splitting CVE-2023-38709 httpd: HTTP Response Splitting in multiple modules CVE-2024-24795 For more details about the security issues, including the impact, a...

7.3CVSS6.8AI score0.03914EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/11/02 12:0 a.m.13 views

SUSE SLES15: apache2-mod_uwsgi / uwsgi / uwsgi-emperor_pg / uwsgi-emperor_zeromq / etc (SUSE-SU-2024:3861-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3861-1 advisory. - CVE-2024-24795: Fixed HTTP Response Splitting in multiple modules bsc1222332 Tenable has extracted the preceding description block...

6.3CVSS6.6AI score0.02874EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/11/02 12:0 a.m.10 views

openSUSE Security Advisory (SUSE-SU-2024:3861-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS6.3AI score0.02874EPSS
Exploits0References4
OSV
OSV
added 2024/11/01 6:34 a.m.10 views

SUSE-SU-2024:3861-1 Security update for uwsgi

This update for uwsgi fixes the following issues: - CVE-2024-24795: Fixed HTTP Response Splitting in multiple modules bsc1222332...

6.3CVSS6.3AI score0.02874EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/01 12:0 a.m.12 views

SUSE SLES15 Security Update : uwsgi (SUSE-SU-2024:3853-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:3853-1 advisory. - CVE-2024-24795: Fixed HTTP Response Splitting in multiple modules bsc1222332 Tenable has extracted the preceding description block directly from the...

6.3CVSS7AI score0.02874EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/11/01 12:0 a.m.10 views

openSUSE: Security Advisory for uwsgi (SUSE-SU-2024:3853-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS6.8AI score0.02874EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2668)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.91327EPSS
Exploits2References2
OSV
OSV
added 2024/10/09 1:5 p.m.7 views

CLSA-2024-1728479129 Fix CVE(s): CVE-2023-38709, CVE-2024-24795, CVE-2024-27316

SECURITY UPDATE: Memory exhaustion due to excessive HTTP/2 incoming headers buffering - debian/patches/CVE-2024-27316.patch: Fix to bail after too many failed reads, increment count on request headers failed to add - CVE-2024-27316 SECURITY UPDATE: Faulty input validation in the core of Apache...

7.5CVSS7AI score0.91327EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2024/09/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2473)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.91327EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2024-2349)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01386EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 6:20 p.m.97 views

Security Bulletin: IBM HTTP Server is vulnerable to HTTP response splitting due to the included Apache HTTP Server (CVE-2024-24795, CVE-2023-38709)

Summary IBM HTTP Server used by IBM WebSphere Application Server is vulnerable to HTTP response splitting due to the included Apache HTTP Server. Vulnerability Details CVEID:CVE-2024-24795 DESCRIPTION: Apache HTTP Server is vulnerable to HTTP response splitting attacks, caused by a flaw in multip...

7.3CVSS6.5AI score0.03914EPSS
Exploits0Affected Software1
Rows per page
Query Builder