Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : nginx:1.16 (AXSA:2021-1530:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1530:01 advisory. nginx: HTTP request smuggling in configurations with URL redirect used as errorpage CVE-2019-20372 Tenable has extracted the preceding description block...

5.3CVSS7.9AI score0.14961EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : rh-nginx116-nginx-1.16.1-4.1.0.1.el7.AXS7, rh-nginx116-1.16-1.el7 (AXSA:2021-1752:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1752:01 advisory. nginx: HTTP request smuggling via error pages in http/ngxhttpspecialresponse.c CVE-2019-20372 Tenable has extracted the preceding description block directly...

5.3CVSS7.9AI score0.14961EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2019-20372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NGINX before 1.17.7, with certain errorpage configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized we...

5.3CVSS6.6AI score0.14961EPSS
Exploits3References2
Amazon
Amazon
added 2023/09/25 12:0 a.m.8 views

Medium: nginx

Issue Overview: NGINX before 1.17.7, with certain errorpage configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer. CVE-2019-20372 Affected Packages: nginx Note: Th...

5.3CVSS6.8AI score0.14961EPSS
Exploits3
GithubExploit
GithubExploit
added 2023/09/16 7:47 p.m.20 views

Exploit for HTTP Request Smuggling in F5 Nginx

CVE-2019-20372 This repository is for educational purposes o...

5.3CVSS7.1AI score0.14961EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.33 views

RHEL 7 : rh-nginx116-nginx (RHSA-2020:2817)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2817 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. Security...

5.3CVSS6.8AI score0.14961EPSS
Exploits3References5
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/21 7:6 p.m.38 views

Security Bulletin: A Security Vulnerability affects IBM Cloud Private - NGINX (CVE-2019-20372)

Summary A Security Vulnerability affects IBM Cloud Private Vulnerability Details CVEID: CVE-2019-20372 DESCRIPTION: NGINX could allow a remote attacker to obtain sensitive information, caused by a flaw in certain errorpage configurations. By sending a specially crafted request, a remote attacker...

5.3CVSS0.7AI score0.14961EPSS
Exploits3Affected Software1
Apple
Apple
added 2021/09/20 12:0 a.m.524 views

About the security content of Xcode 13

About the security content of Xcode 13 This document describes the security content of Xcode 13. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recen...

9.8CVSS7.5AI score0.81958EPSS
Exploits10References1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2020:0348-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.7AI score0.14961EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/13 4:54 p.m.32 views

Security Bulletin: Spectrum Discover has addressed multiple security vulnerabilities (CVE-2020-13401, CVE-2019-20372)

Summary Spectrum Discover prior to version 2.0.3.3 shipped with a vulnerable version of Docker and Nginx. Vulnerability Details CVEID: CVE-2020-13401 DESCRIPTION: Docker Docker CE is vulnerable to a man-in-the-middle attack, caused by improper validation of router advertisements. By sending rogue...

6CVSS0.7AI score0.14961EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2020:1171-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.14961EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2021/03/09 3:50 p.m.184 views

Important: Red Hat Security Advisory: Red Hat Ansible Tower 3.6.7-1 - Container security and bug fix update

Red Hat Ansible Tower 3.6.7-1 - RHEL7 Container Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

6.9CVSS6.8AI score0.99019EPSS
Exploits15References6
Oracle linux
Oracle linux
added 2020/12/18 12:0 a.m.76 views

nginx:1.16 security update

1:1.16.1-1.0.1.1 - Remove Red Hat references Orabug: 29498217 1:1.16.1-1.1 - Resolves: 1898952 - CVE 2019-20372 nginx:1.16/nginx: HTTP request smuggling via error pages in http/ngxhttpspecialresponse.c...

5.3CVSS1AI score0.14961EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2020/12/15 5:12 p.m.90 views

Moderate: Red Hat Security Advisory: nginx:1.16 security update

An update for the nginx:1.16 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.3CVSS6.7AI score0.14961EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/10 10:20 p.m.36 views

Security Bulletin: NGINX vulnerability CVE-2019-20372 impacts IBM Aspera High-Speed Transfer Server and Aspera High-Speed Transfer Endpoint versions prior to V4.0

Summary NGINX vulnerability CVE-2019-20372 impacts IBM Aspera High-Speed Transfer Server and Aspera High-Speed Transfer Endpoint versions prior to V4.0. The fix for this set of vulnerabilities was delivered in IBM Aspera High-Speed Transfer Server V4.0.0 and IBM Aspera High-Speed Transfer Endpoin...

5.3CVSS2AI score0.14961EPSS
Exploits3Affected Software1
CBLMariner
CBLMariner
added 2020/11/30 7:30 p.m.25 views

CVE-2019-20372 affecting package nginx 1.16.1-4

CVE-2019-20372 affecting package nginx 1.16.1-4. A patched version of the package is available...

5.3CVSS7.5AI score0.14961EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/10 2:39 p.m.38 views

Security Bulletin: IBM StoredIQ is affected by a vulnerability in NGINX (CVE-2019-20372)

Summary IBM StoredIQ has addressed NGINX vulnerability CVE-2019-20372. Vulnerability Details CVEID: CVE-2019-20372 DESCRIPTION: NGINX could allow a remote attacker to obtain sensitive information, caused by a flaw in certain errorpage configurations. By sending a specially crafted request, a remo...

5.3CVSS1.5AI score0.14961EPSS
Exploits3Affected Software1
RedHat Linux
RedHat Linux
added 2020/07/02 4:19 p.m.126 views

Moderate: Red Hat Security Advisory: rh-nginx116-nginx security update

An update for rh-nginx116-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.3CVSS6.7AI score0.14961EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.52 views

EulerOS 2.0 SP2 : nginx (EulerOS-SA-2020-1644)

According to the version of the nginx package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - NGINX before 1.17.7, with certain errorpage configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read...

5.3CVSS6.8AI score0.14961EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/06/16 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for nginx (EulerOS-SA-2020-1644)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.8AI score0.14961EPSS
Exploits3References2
Rows per page
Query Builder