Lucene search
K

43 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-10098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and...

6.1CVSS6.3AI score0.73981EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.52 views

Rocky Linux 8 : httpd:2.4 (RLSA-2020:4751)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4751 advisory. - In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request...

9.1CVSS6.5AI score0.81466EPSS
Exploits6References25
OSV
OSV
added 2023/08/31 12:15 p.m.8 views

BELL-CVE-2019-10098 CVE-2019-10098 does not affect BellSoft software

Bulletin has no description...

6.1CVSS5.8AI score0.73981EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.186 views

K25126370: Apache HTTPD vulnerability CVE-2019-10098

Security Advisory Description In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL. CVE-2019-10098 Impact An attacker can abuse thi...

6.1CVSS6.5AI score0.73981EPSS
Exploits1Affected Software14
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.9 views

SUSE CVE-2019-10098

In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL...

8.2CVSS7.9AI score0.73981EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.40 views

RHEL 6 / 7 : httpd24-httpd and httpd24-mod_md (RHSA-2020:2263)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2263 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modrewrite...

6.1CVSS6.6AI score0.73981EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.43 views

Slackware: Security Advisory (SSA:2020-091-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.6AI score0.81466EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.60 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : httpd Multiple Vulnerabilities (NS-SA-2021-0159)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has httpd packages installed that are affected by multiple vulnerabilities: - In Apache httpd 2.4.0 to 2.4.29, the expression specified in could match '$' to a newline character in a malicious filename, rather than matching onl...

8.1CVSS6.6AI score0.86006EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/22 11:38 p.m.43 views

Security Bulletin: Vulnerabilities in Apache HTTP CVE-2019-10098 and CVE-2020-1927.

Summary Apache HTTP Server is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE's. Vulnerability Details CVEID: CVE-2019-10098 DESCRIPTION: Apache HTTP Server could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in t...

6.1CVSS0.9AI score0.73981EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/07/08 12:0 a.m.66 views

F5 Networks BIG-IP : Apache HTTPD vulnerability (K25126370)

In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL. CVE-2019-10098 Impact An attacker can abuse this vulnerability in a phishing...

6.1CVSS6.3AI score0.73981EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.47 views

SUSE: Security Advisory (SUSE-SU-2019:2237-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.81466EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.93 views

Oracle Linux 8 : httpd:2.4 (ELSA-2020-4751)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4751 advisory. - Resolves: 1823263 CVE-2020-1934 - CVE-2020-1934 httpd: modproxyftp use of uninitialized value - Resolves: 1823259 - CVE-2020-1927 httpd:2.4/httpd:...

9.1CVSS6.9AI score0.89744EPSS
Exploits6References11
Cent OS
Cent OS
added 2020/10/20 6:13 p.m.805 views

httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update

CentOS Errata and Security Advisory CESA-2020:3958 An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.7AI score0.86006EPSS
Exploits1References7
Oracle linux
Oracle linux
added 2020/10/06 12:0 a.m.217 views

httpd security, bug fix, and enhancement update

2.4.6-95.0.1 - replace index.html with Oracles index page oracleindex.html 2.4.6-95 - Resolves: 1823262 - CVE-2020-1934 httpd: modproxyftp use of uninitialized value 2.4.6-94 - Resolves: 1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: 1747283 -...

8.1CVSS0.9AI score0.86006EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/09/29 7:26 p.m.124 views

Moderate: Red Hat Security Advisory: httpd security, bug fix, and enhancement update

An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.1CVSS6.7AI score0.86006EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-2103)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.5AI score0.81466EPSS
Exploits5References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/21 5:24 a.m.51 views

Security Bulletin: Vulnerabilities in IBM HTTP Server affect IBM Netezza Performance Portal

Summary IBM HTTP Server is used by IBM Netezza Performance Portal. IBM Netezza Performance Portal has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-20843 DESCRIPTION: libexpat is vulnerable to a denial of service, caused by an error in the XML parser. By persuading a victim...

7.8CVSS1AI score0.81466EPSS
Exploits6Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.52 views

EulerOS 2.0 SP2 : httpd (EulerOS-SA-2020-1650)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes...

6.1CVSS6.1AI score0.81466EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.95 views

EulerOS Virtualization for ARM 64 3.0.2.0 : httpd (EulerOS-SA-2020-1552)

According to the versions of the httpd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential...

6.1CVSS6.5AI score0.81466EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.46 views

EulerOS Virtualization 3.0.2.2 : httpd (EulerOS-SA-2020-1455)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple...

6.1CVSS6.4AI score0.81466EPSS
Exploits5References7
Rows per page
Query Builder