CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11631 matches found

Rockylinux•added 2023/10/24 6:36 p.m.•62 views

php security update

An update is available for php. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting language commonly used with the Apache HTTP...

9.8CVSS7.4AI score0.08003EPSS

Exploits6

OSV•added 2023/10/24 6:35 p.m.•39 views

RLSA-2023:5927 Important: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS...

9.8CVSS7.9AI score0.08003EPSS

Exploits6References7

ICS•added 2023/10/24 6:0 a.m.•65 views

Rockwell Automation Stratix 5800 and Stratix 5200 (UPDATE A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION : Exploitable remotely/low attack complexity/known public exploitation Vendor : Rockwell Automation Equipment : Stratix 5800 and Stratix 5200 Vulnerabilities : Unprotected Alternate Channel, OS Command Injection 2. RISK EVALUATION Successful...

10CVSS9.5AI score0.99571EPSS

Exploits25References8

Fedora•added 2023/10/24 1:23 a.m.•42 views

[SECURITY] Fedora 38 Update: httpd-2.4.58-1.fc38

The Apache HTTP Server is a powerful, efficient, and extensible web server...

7.5CVSS7AI score0.02978EPSS

Exploits0

F5 Networks•added 2023/10/23 7:44 p.m.•66 views

K000137326: Apache mod_macro vulnerability CVE-2023-31122

Security Advisory Description Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.57. CVE-2023-31122 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development ha...

7.5CVSS6.8AI score0.02978EPSS

Exploits0

F5 Networks•added 2023/10/23 7:25 p.m.•53 views

K000137325: Apache httpd vulnerability CVE-2023-43622

Security Advisory Description An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker resources in the server, similar to the well known "slow loris" attack...

7.5CVSS7.5AI score0.70595EPSS

Exploits0

OSV•added 2023/10/23 7:15 a.m.•4 views

AZL-43639 CVE-2023-43622 affecting package mod_http2 1.15.14-2

An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker resources in the server, similar to the well known "slow loris" attack pattern. This has been fixed in...

7.5CVSS7AI score0.70595EPSS

Exploits0References1

OSV•added 2023/10/23 7:15 a.m.•101 views

CVE-2023-31122

Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7.6AI score

Exploits0References6