Lucene search
K

65 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: httpd (UTSA-2025-987461)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987461 advisory. A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. AddType and...

6.2CVSS7AI score0.04134EPSS
Exploits3References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 2:57 a.m.76 views

Security Bulletin: Multiple vulnerabilites in IBM Rational Build Forge.

Summary IBM Rational Build Forge 8.0.0.27 addresses multiple vulnerabilites Vulnerability Details CVEID:CVE-2024-40898 DESCRIPTION: Apache HTTP Server is vulnerable to server-side request forgery, caused by an error on Windows with modrewrite in server/vhost context. By sending a specially crafte...

9.8CVSS9.8AI score0.6795EPSS
Exploits6Affected Software1
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.9 views

Astra Linux – Vulnerability in Apache2

A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some uses of the legacy content-type-based configuration of handlers. Configurations like “AddType” and similar ones, under certain circumstances where files are requested indirectly, can lead to exposure of local...

5.3CVSS6.5AI score0.04134EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: httpd (CVE-2024-39884)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39884 advisory. - A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based...

6.2CVSS7.1AI score0.00889EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/01/14 12:0 a.m.32 views

EulerOS 2.0 SP9 : httpd (EulerOS-SA-2025-1056)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7.1AI score0.04134EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/01/13 12:0 a.m.30 views

EulerOS 2.0 SP10 : httpd (EulerOS-SA-2025-1006)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7.1AI score0.04134EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/01/13 12:0 a.m.28 views

EulerOS 2.0 SP10 : httpd (EulerOS-SA-2025-1023)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7.1AI score0.04134EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.27 views

EulerOS 2.0 SP11 : httpd (EulerOS-SA-2024-2982)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7.1AI score0.04134EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.22 views

EulerOS 2.0 SP12 : httpd (EulerOS-SA-2024-2952)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7AI score0.04134EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.25 views

EulerOS 2.0 SP11 : httpd (EulerOS-SA-2024-2968)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of...

6.2CVSS7.1AI score0.04134EPSS
Exploits3References2
F5 Networks
F5 Networks
added 2024/10/31 2:47 a.m.44 views

K000148354: Apache vulnerability CVE-2024-40725

Security Advisory Description A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source...

6.2CVSS6.4AI score0.04134EPSS
Exploits3
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2751)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2736)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.41611EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2769)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.44 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2688)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2702)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2719)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.41611EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.48 views

EulerOS Virtualization 2.12.1 : httpd (EulerOS-SA-2024-2751)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Encoding problem in modproxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References8
OSV
OSV
added 2024/10/25 11:9 a.m.7 views

OESA-2024-2288 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some...

5.3CVSS6.6AI score0.04134EPSS
Exploits3References2
Debian
Debian
added 2024/10/17 7:42 p.m.23 views

[SECURITY] [DLA 3921-1] apache2 regression update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3921-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès October 16, 2024 https://wiki.debian.org/LTS -...

9.8CVSS7.1AI score0.02456EPSS
Exploits0
Rows per page
Query Builder