Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

71 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : httpd24-httpd-2.4.18-11.el7 (AXSA:2016-572:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-572:01 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2016-4979 The Apache HTTP...

8.1CVSS6.8AI score0.51564EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : httpd24-httpd-2.4.18-11.AXS4 (AXSA:2016-567:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-567:01 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2016-4979 The Apache HTTP...

8.1CVSS6.8AI score0.51564EPSS
Exploits0References3
OpenVAS
OpenVASadded 2025/02/13 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2016:1819-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.51564EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletinsadded 2023/03/29 1:48 a.m.79 views

Security Bulletin: Multiple vulnerabilities in Apache Tomcat affect SAN Volume Controller, Storwize family and FlashSystem V9000 products

Summary Vulnerabilities in the Apache Tomcat component affect the product's management GUI. The CLI interface is unaffected. The applicable CVEs are CVE-2016-5385 CVE-2016-5386 CVE-2016-5387 CVE-2016-5388. Vulnerability Details CVEID: CVE-2016-5385 DESCRIPTION: PHP could allow a remote attacker t...

8.1CVSS7.3AI score0.83504EPSS
Exploits0Affected Software6
IBM Security Bulletins
IBM Security Bulletinsadded 2023/02/18 1:45 a.m.71 views

Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem models 840 and 900

Summary There are vulnerabilities in Apache Tomcat to which the IBM® FlashSystem™ 840 and FlashSystem™ 900 are susceptible. An exploit of these vulnerabilities CVE-2016-3092, CVE-2016-5385, CVE-5386, CVE-2016-5387, and CVE-2016-5388 could allow a remote attacker to wage a denial of service attack...

8.1CVSS8AI score0.83504EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVEadded 2023/02/15 5:0 a.m.1 views

SUSE CVE-2016-5387

The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTPPROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary...

8.1CVSS7.8AI score0.51564EPSS
Exploits0References16
F5 Networks
F5 Networksadded 2022/12/19 7:39 p.m.62 views

K80513384: Apache HTTPD vulnerability CVE-2016-5387

Security Advisory Description The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTPPROXY environment variable, which might allow remote attackers to redirect an application's outboun...

8.1CVSS6.8AI score0.51564EPSS
Exploits0Affected Software26
IBM Security Bulletins
IBM Security Bulletinsadded 2022/09/08 12:9 a.m.70 views

Security Bulletin: Redirect HTTP traffic vulnerability may affect IBM HTTP Server (CVE-2016-5387)

Summary There is a vulnerability that allows redirecting of HTTP traffic with CGI applications that may affect IBM HTTP Server IHS. This vulnerability is known as "HTTPOXY". Vulnerability Details CVEID: CVE-2016-5387 DESCRIPTION: Apache HTTP Server could allow a remote attacker to redirect HTTP...

8.1CVSS8AI score0.51564EPSS
Exploits0Affected Software2
OpenVAS
OpenVASadded 2022/04/21 12:0 a.m.42 views

Slackware: Security Advisory (SSA:2016-358-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.3AI score0.71517EPSS
Exploits8References2
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2016-0262)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.5AI score0.51564EPSS
Exploits0References6
OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2016:2090-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.51564EPSS
Exploits0References7
OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:1818-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.51564EPSS
Exploits0References4
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.292 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2019-1419)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.9384EPSS
Exploits26References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.57 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2016-1030)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.6AI score0.51564EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletinsadded 2019/12/18 2:26 p.m.45 views

Security Bulletin: Vulnerabilities CVE-2016-5387 and CVE-2016-5388 in IBM i HTTP Server

Summary HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-5388 DESCRIPTION: Apache Tomcat could allow a remote attacker to redirect HTTP traffic of CGI application, caused by the failure to protect applications from the presence of...

8.1CVSS0.7AI score0.51564EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 12:32 a.m.50 views

Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V840

Summary There are vulnerabilities in Apache Tomcat to which the IBM® FlashSystem™ V840 is susceptible. An exploit of these vulnerabilities CVE-2016-3092, CVE-2016-5385, CVE-5386, CVE-2016-5387, and CVE-2016-5388 could allow a remote attacker to wage a denial of service attack or redirect outbound...

8.1CVSS0.4AI score0.83504EPSS
Exploits0Affected Software1
OpenVAS
OpenVASadded 2017/07/20 12:0 a.m.92 views

Apple Mac OS X Multiple Code Execution Vulnerabilities (HT208221)

Apple Mac OS X is prone to multiple code execution vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.71517EPSS
Exploits13References15
Tenable Nessus
Tenable Nessusadded 2017/07/20 12:0 a.m.107 views

Oracle Enterprise Manager Grid Control Multiple Vulnerabilities (July 2017 CPU) (httpoxy)

The version of Oracle Enterprise Manager Grid Control installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Bouncy Castle Java library due to improper validation of a point within the elliptic curve. An...

9.8CVSS7.7AI score0.83504EPSS
Exploits3References15
Mageia
Mageiaadded 2017/05/26 6:54 a.m.68 views

Updated perl-CGI-Emulate-PSGI packages fix security vulnerability

This update removes the setting of the HTTPPROXY environment value. This works around the httproxy vulnerability aka CVE-2016-5387...

8.1CVSS0.8AI score0.51564EPSS
Exploits0References2
OSV
OSVadded 2017/05/26 6:54 a.m.16 views

MGASA-2017-0146 Updated perl-CGI-Emulate-PSGI packages fix security vulnerability

This update removes the setting of the HTTPPROXY environment value. This works around the httproxy vulnerability aka CVE-2016-5387...

8.1CVSS8.1AI score0.51564EPSS
Exploits0References3
Rows per page
Query Builder