Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Oracle Linux 9 : httpd (ELSA-2026-21391)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-21391 advisory. - Resolves: RHEL-173555 - httpd: Apache HTTP Server modproxyajp: Arbitrary code execution via heap-based buffer overflow CVE-2026-28780 - Resolves:...

9.8CVSS7.2AI score0.01325EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/22 3:18 p.m.9 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP4 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 4 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.5AI score0.11471EPSS
Exploits9References12
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.26 views

RockyLinux 9 : httpd (RLSA-2026:21391)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:21391 advisory. httpd: modproxyajp: heap-based buffer over-read and memory disclosure in ajpparsedata CVE-2026-34059 httpd: modproxyajp: heap-based buffer over-read due...

9.8CVSS6.4AI score0.01325EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.24 views

SUSE SLED15 / SLES15 Security Update : apache2 (SUSE-SU-2026:2104-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2104-1 advisory. This update for apache2 fixes the following issues - CVE-2026-23918: http2: double free and possible RCE on...

9.8CVSS7.7AI score0.4581EPSS
Exploits18References34
SUSE Linux
SUSE Linux
added 2026/05/28 2:3 p.m.11 views

Security update for apache2

This update for apache2 fixes the following issues CVE-2026-23918: http2: double free and possible RCE on early reset bsc1263957. CVE-2026-24072: modrewrite elevation of privileges via apexpr bsc1263935. CVE-2026-28780: heap buffer overflow in modproxyajp via ajpmsgcheckheader bsc1264163...

9.2CVSS6.2AI score0.4581EPSS
Exploits18References44
CBLMariner
CBLMariner
added 2026/05/18 8:36 p.m.20 views

CVE-2026-33007 affecting package httpd for versions less than 2.4.67-1

CVE-2026-33007 affecting package httpd for versions less than 2.4.67-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS5.8AI score0.00514EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/17 12:0 a.m.15 views

apache2-2.4.67-1.1 on GA media (moderate)

apache2-2.4.67-1.1 on GA media Announcement ID: openSUSE-SU-2026:10785-1 Rating: moderate Cross-References: CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29168 CVE-2026-29169 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 CVSS scores:...

9.2CVSS6AI score0.4581EPSS
Exploits18
Debian
Debian
added 2026/05/08 9:12 a.m.12 views

[SECURITY] [DLA 4571-1] apache2 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4571-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès May 08, 2026 https://wiki.debian.org/LTS -...

8.8CVSS6.2AI score0.00654EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.11 views

Debian dsa-6248 : apache2 - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6248 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6248-1 [email protected]...

9.8CVSS6.2AI score0.4581EPSS
Exploits18References25
OSV
OSV
added 2026/05/05 5:19 p.m.7 views

BELL-CVE-2026-33007

Bulletin has no description...

5.3CVSS5.7AI score0.00514EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/05 12:0 a.m.5 views

CVE-2026-33007

A NULL pointer dereference in the modauthnsocache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.3CVSS5.8AI score0.00514EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2026/05/04 12:0 a.m.42 views

www/apache24 -- Multiple vulnerabilities

The Apache httpd project reports: modproxyajp: CVE-2026-34059, CVE-2026-34032, CVE-2026-33857, CVE-2026-28780 multiple modules: CVE-2026-33523 modauthnsocache: CVE-2026-33007 modauthdigest: CVE-2026-33006 moddavlock: moddavlock modmd: CVE-2026-29168 modrewrite: CVE-2026-24072 modhttp2:...

9.8CVSS5.8AI score0.4581EPSS
Exploits18References1
Rows per page
Query Builder