Lucene search
+L

15 matches found

Circl
Circl
added 2024/10/15 10:14 a.m.6 views

CVE-2021-32785

creationtimestamp| type| source ---|---|--- 2024-10-15 10:14:15+00:00| seen| Telegram/HfSunJuoYNfbsQCJ20cuXyI7bzH8EMEXzusn30k3vpXeQ...

7.5CVSS4.8AI score0.02731EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/01 12:0 a.m.42 views

Debian dla-3409 : libapache2-mod-auth-openidc - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3409 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3409-1 [email protected]...

7.5CVSS6.7AI score0.02731EPSS
Exploits1References14
OpenVAS
OpenVAS
added 2023/05/01 12:0 a.m.27 views

Debian: Security Advisory (DLA-3409-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.02731EPSS
Exploits1References4
Debian
Debian
added 2023/04/30 9:14 p.m.92 views

[SECURITY] [DLA 3409-1] libapache2-mod-auth-openidc security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3409-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk April 30, 2023 https://wiki.debian.org/LTS -...

7.5CVSS7.3AI score0.02731EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.45 views

K41454238: Apache mod_auth_openidc vulnerabilities CVE-2021-32785 CVE-2021-32786 CVE-2021-32792

Security Advisory Description CVE-2021-32785 modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. When modauthopenidc versions prior to 2.4.9 are configur...

7.5CVSS6.5AI score0.02731EPSS
Exploits1
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.45 views

CVE-2021-32785 affecting package httpd for versions less than 2.4.52-1

CVE-2021-32785 affecting package httpd for versions less than 2.4.52-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.7AI score0.02731EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2021-0452)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.7AI score0.02731EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/10/13 12:0 a.m.30 views

SUSE SLES12 Security Update : apache2-mod_auth_openidc (SUSE-SU-2021:3352-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3352-1 advisory. - CVE-2021-32785: format string bug via hiredis bsc1188638 - CVE-2021-32786: open redirect in logout functionality bsc1188639 -...

7.5CVSS6.7AI score0.02731EPSS
Exploits2References16
OpenVAS
OpenVAS
added 2021/10/13 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:3352-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.02731EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2021/09/23 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2021:3020-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.02731EPSS
Exploits1References2
OSV
OSV
added 2021/09/16 10:7 a.m.11 views

OPENSUSE-SU-2021:1277-1 Security update for apache2-mod_auth_openidc

This update for apache2-modauthopenidc fixes the following issues: - CVE-2021-32785: format string bug via hiredis bsc1188638 - CVE-2021-32786: open redirect in logout functionality bsc1188639 - CVE-2021-32791: Hardcoded static IV and AAD with a reused key in AES GCM encryption bsc1188849 -...

7.5CVSS6AI score0.02731EPSS
Exploits1References9
OPENSUSE Linux
OPENSUSE Linux
added 2021/09/16 12:0 a.m.52 views

Security update for apache2-mod_auth_openidc (moderate)

openSUSE Security Update: Security update for apache2-modauthopenidc Announcement ID: openSUSE-SU-2021:1277-1 Rating: moderate References: 1188638 1188639 1188848 1188849 Cross-References: CVE-2021-32785 CVE-2021-32786 CVE-2021-32791 CVE-2021-32792 CVSS scores: CVE-2021-32785 SUSE: 5.3...

5.9CVSS6.4AI score0.02731EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/09/14 12:0 a.m.37 views

openSUSE 15 Security Update : apache2-mod_auth_openidc (openSUSE-SU-2021:3020-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3020-1 advisory. - modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party...

7.5CVSS6.8AI score0.02731EPSS
Exploits1References13
OpenVAS
OpenVAS
added 2021/09/14 12:0 a.m.29 views

openSUSE: Security Advisory for apache2-mod_auth_openidc (openSUSE-SU-2021:3020-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.02731EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/07/22 12:0 a.m.57 views

CVE-2021-32785 Format string bug in the Redis cache implementation

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. When modauthopenidc versions prior to 2.4.9 are configured to use an unencrypted Redis cache...

5.3CVSS7.9AI score0.02731EPSS
Exploits0References6
Rows per page
Query Builder