Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : httpd:2.4 (AXSA:2022-3552:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3552:01 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request...

8.2CVSS7.8AI score0.82295EPSS
Exploits1References5
Circl
Circl
added 2024/10/15 10:14 a.m.5 views

CVE-2020-35452

creationtimestamp| type| source ---|---|--- 2024-10-15 10:14:15+00:00| seen| Telegram/HfSunJuoYNfbsQCJ20cuXyI7bzH8EMEXzusn30k3vpXeQ...

7.3CVSS6.8AI score0.53191EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.87 views

RHEL 7 : httpd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - httpd: modproxy: X-Forwarded-For dropped by hop-by-hop mechanism CVE-2022-31813 - Apache HTTP Server...

9.1AI score0.90407EPSS
Exploits3References21
Rosalinux
Rosalinux
added 2023/04/25 11:49 a.m.72 views

Advisory ROSA-SA-2023-2159

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: 2.4.37 CVE-ID: CVE-2006-20001 BDU-ID: 2023-01105 CVE-Crit: HIGH CVE-DESC: A vulnerability in the moddav module of the Apache HTTP Server web server is related to an operation exceeding buffer boundaries. Exploitation of the...

9.8CVSS8.9AI score0.90039EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.47 views

CBL Mariner 2.0 Security Update: httpd (CVE-2020-35452)

The version of httpd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-35452 advisory. - Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in...

7.3CVSS7.1AI score0.53191EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.69 views

K27129140: mod_auth_digest vulnerability CVE-2020-35452

Security Advisory Description Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or...

7.3CVSS7.1AI score0.53191EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.6 views

SUSE CVE-2020-35452

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make i...

8.1CVSS7.1AI score0.53191EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.64 views

Oracle Linux 8 : httpd:2.4 (ELSA-2022-1915)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1915 advisory. - Resolves: 2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations Tenable has extracted the...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.86 views

AlmaLinux 8 : httpd:2.4 (ALSA-2022:1915)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1915 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.245 views

RHEL 8 : httpd:2.4 (RHSA-2022:1915)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1915 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splittin...

8.2CVSS7.6AI score0.82295EPSS
Exploits1References14
OSV
OSV
added 2022/05/10 8:7 a.m.51 views

ALSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS8.9AI score0.82295EPSS
Exploits1References5
OSV
OSV
added 2022/05/10 8:7 a.m.46 views

RLSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

7.5CVSS8.9AI score0.82295EPSS
Exploits1References7
AlmaLinux
AlmaLinux
added 2022/05/10 8:7 a.m.86 views

Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS9.3AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.66 views

CentOS 8 : httpd:2.4 (CESA-2022:1915)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1915 advisory. - httpd: Single zero byte stack overflow in modauthdigest CVE-2020-35452 - httpd: Request splitting via HTTP/2 method injection and modproxy...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.28 views

CVE-2020-35452 affecting package httpd for versions less than 2.4.46-10

CVE-2020-35452 affecting package httpd for versions less than 2.4.46-10. A patched version of the package is available...

7.3CVSS7.8AI score0.53191EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1124)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99999EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1069)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.68067EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.40 views

Mageia: Security Advisory (MGASA-2021-0265)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.68067EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/12/31 12:0 a.m.39 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-2878)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.68067EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/12/30 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-2832)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99999EPSS
Exploits5References4
Rows per page
Query Builder