Lucene search
K

108 matches found

Rockylinux
Rockylinux
added 3 days ago6 views

httpd security, bug fix, and enhancement update

An update is available for httpd. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful, efficient, and...

9.8CVSS6.9AI score0.00805EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 3 days ago6 views

RockyLinux 10 : httpd (RLSA-2026:34109)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:34109 advisory. httpd: incomplete fix for CVE-2023-38709 CVE-2024-42516 httpd: NULL pointer dereference via specially crafted request CVE-2026-29169 httpd: Apache HTTP...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References27
IBM Security Bulletins
IBM Security Bulletins
added last week19 views

Security Bulletin: Due to use of IBM Tivoli Monitoring , IBM Cloud Pak System is affected by multiple vulnerabilities.

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak System. Vulnerability Details CVEID:CVE-2024-38473 DESCRIPTION: Encoding problem in modproxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to backend services, potentially bypassing...

9.8CVSS7AI score0.41611EPSS
Exploits1Affected Software2
RedHat Linux
RedHat Linux
added 2026/07/01 9:31 a.m.8 views

Important: Red Hat Security Advisory: httpd security, bug fix, and enhancement update

An update for httpd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.03914EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

RHEL 10 : httpd (RHSA-2026:34109)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34109 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: incomplete fix...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References22
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.9 views

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2026-1171)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of...

9.1CVSS7.3AI score0.03914EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : httpd:2.4 (AXSA:2024-8505:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8505:01 advisory. httpd:2.4: httpd: HTTP response splitting CVE-2023-38709 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.3CVSS5.6AI score0.03914EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/11/12 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2025-2387)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.00772EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.4 views

EulerOS 2.0 SP12 : httpd (EulerOS-SA-2025-2359)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications...

7.5CVSS7.5AI score0.03914EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-54775

Malicious code in bioql PyPI...

7.5CVSS7.1AI score0.00679EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 7:55 a.m.6 views

BIT-APACHE-2024-42516 Apache HTTP Server: HTTP response splitting

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP response. This vulnerability was described as CVE-2023-38709 but the patch included in Apache HTTP...

7.5CVSS6.8AI score0.00679EPSS
Exploits0References5
OSV
OSV
added 2025/07/10 5:15 p.m.6 views

AZL-65166 CVE-2024-42516 affecting package httpd for versions less than 2.4.64-1

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP response. This vulnerability was described as CVE-2023-38709 but the patch included in Apache HTTP...

7.5CVSS6.5AI score0.00679EPSS
Exploits0References1
OSV
OSV
added 2025/07/10 4:53 p.m.7 views

CVE-2024-42516 Apache HTTP Server: HTTP response splitting

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP response. This vulnerability was described as CVE-2023-38709 but the patch included in Apache HTTP...

7.5CVSS5.9AI score0.00679EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: httpd:2.4/httpd (TSSA-2024:0312)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0312 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.3CVSS7.5AI score0.03914EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.24 views

Alibaba Cloud Linux 3 : 0155: httpd:2.4 (ALINUX3-SA-2024:0155)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0155 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-38709: Faulty input validation in...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References7
OSV
OSV
added 2025/03/17 8:16 p.m.32 views

RLSA-2024:9306 Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: HTTP response splitting CVE-2023-38709 httpd: HTTP Response Splitting in multiple modules CVE-2024-24795 For more details about the security issues, including the impact, a...

7.3CVSS6.7AI score0.03914EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.23 views

openSUSE Security Advisory (SUSE-SU-2024:1868-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.91327EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.25 views

Azure Linux 3.0 Security Update: httpd (CVE-2023-38709)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-38709 advisory. - Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to...

7.3CVSS7.5AI score0.03914EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/14 12:45 p.m.29 views

Security Bulletin: Vulnerability in Apache HTTP Server (CVE-2023-38709) affects Power HMC.

Summary The Apache HTTP Server library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2023-38709 DESCRIPTION: Apache HTTP Server is vulnerable to HTTP response splitting attacks, caused by improper input validation in the...

7.3CVSS6.5AI score0.03914EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/11/12 9:33 a.m.46 views

Moderate: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.3CVSS6.7AI score0.03914EPSS
Exploits0References8
Rows per page
Query Builder