EulerOS 2.0 SP10 : httpd (EulerOS-SA-2022-1507)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for configurations mixi...

Oracle Enterprise Manager Ops Center (Apr 2022 CPU)

The 12.4.0.0 versions of Enterprise Manager Ops Center installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Web Server Apache HTTP Server...

EulerOS Virtualization 2.10.1 : httpd (EulerOS-SA-2022-1373)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2022-1399)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

CVE-2022-20697 Cisco IOS and IOS XE Software Web Services Denial of Service Vulnerability

A vulnerability in the web services interface of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service DoS condition. This vulnerability is due to improper resource management in the HTTP server code. An attacker could exploit this...

CVE-2022-20697

The CVE-2022-20697 issue affects Cisco IOS Software and Cisco IOS XE Software web services. The vulnerability stems from improper resource management in the HTTP server code, enabling an authenticated, remote attacker to trigger a DoS by sending a large volume of HTTP requests, which can cause th...

Security Bulletin: IBM Security SiteProtector System is affected by Apache HTTP Server vulnerability CVE-2021-39275

Summary IBM Security SiteProtector System has addressed the following vulnerability in Core XPU: Vulnerability Details CVEID: CVE-2021-39275 DESCRIPTION: Apache HTTP Server is vulnerable to a buffer overflow, caused by improper bounds checking by the apescapequotes function. By sending specially...

Security Bulletin: IBM Security SiteProtector System is affected by Apache HTTP Server vulnerabilities (CVE-2021-40438, CVE-2021-34798)

Summary IBM Security SiteProtector System has addressed the following vulnerabilities in Core XPU: Vulnerability Details CVEID: CVE-2021-40438 DESCRIPTION: Apache HTTP Server is vulnerable to server-side request forgery, caused by an error in modproxy. By sending a specially crafted request...

Oracle Linux 8 : httpd:2.4 (ELSA-2022-9276)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9276 advisory. 2.4.37-43.0.3.3 - Resolves: CVE-2021-33193 a crafted method sent through HTTP/2 will bypass validation Orabug: 33942809 Tenable has extracted the preceding...

CVE-2022-24070

A use-after-free vulnerability was found in Subversion in the moddavsvn Apache HTTP server HTTPd module. While looking up path-based authorization authz rules, multiple calls to the postconfig hook can invalidate cached pointers to object-pools, which Subversion subsequently uses. This issue...

DEBIAN-CVE-2021-28544

Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization authz rules. When a node has been copied from a protected location, users with access to the copy can see the 'copyfrom...

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On due to Expat vulnerabilities

Summary There are multiple vulnerabilities in the Expat library affecting the IBM HTTP Server used by IBM WebSphere Application Server CVE-2022-25313, CVE-2022-25315, CVE-2022-25235,CVE-2022-25236, CVE-2021-45960, CVE-2022-22822, CVE-2022-23990, CVE-2022-22823, CVE-2022-23852, CVE-2022-22825,...

URL Restriction Bypass

Description The validation of URLs contains flaws that allow bypassing security restrictions that are applied in the security profiles of PlantUML. There are two different flaws through which validation mechanisms can be circumvented. In the examples images are loaded to showcase the bypass...

Security Bulletin: Multiple vulnerabilities have been identified in IBM HTTP Server used by IBM Rational ClearQuest

Summary IBM HTTP Server IHS is used by the IBM Rational ClearQuest server and web components. Information about security vulnerabilities affecting IHS have been published in multiple security bulletins. Vulnerability Details CVEID: CVE-2022-25315 DESCRIPTION: libexpat could allow a remote attacke...

Small HTTP Server 3.06 Remote Buffer Overflow Exploit

Exploit Title: Small HTTP Server Remote Buffer Overflow Discovered by: Yehia Elghaly Vendor Homepage: http://smallsrv.com/ Software Link : http://smallsrv.com/shttpsmgi.exe Tested Version: 3.06 Vulnerability Type: Buffer Overflow Remote Tested on OS: Windows XP SP3 - Windows 7 Professional x86 SP...

Small HTTP Server 3.06 Remote Buffer Overflow

Exploit Title: Small HTTP Server Remote Buffer Overflow Discovered by: Yehia Elghaly Discovered Date: 2022-04-07 Vendor Homepage: http://smallsrv.com/ Software Link : http://smallsrv.com/shttpsmgi.exe Tested Version: 3.06 Vulnerability Type: Buffer Overflow Remote Tested on OS: Windows XP SP3 -...

Server-Side Request Forgery (SSRF)

calibreweb is vulnerable to server-side request forgerySSRF attacks. An attacker is able to set up their HTTP server to respond with a 302 redirect to redirect the request to localhost which results in injecting malicious ip address via IPV4/IPV4 embedding...

Exploit for Path Traversal in Apache Http_Server

Exploit for CVE-2021-41773 and CVE-2021-42013 Path travers...

Exploit for Path Traversal in Apache Http_Server

Exploit for CVE-2021-41773 and CVE-2021-42013 Path travers...

CVE-2022-24801

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to version 22.4.0rc1, the Twisted Web HTTP 1.1 server, located in the twisted.web.http module, parsed several HTTP request constructs more leniently than permitted by RFC 7230. This non-conformant parsing...