11634 matches found
Oracle HTTP Server (Oct 2021 CPU)
The 11.1.1.9.0, 12.2.1.3.0, and 12.2.1.4.0 versions of HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2021 CPU advisory. - Vulnerability in the Oracle WebLogic Server Proxy Plug-In product of Oracle Fusion Middleware component: SSL...
Apache HTTP Server path traversal
Added: 10/21/2021 Background Apache HTTP Server is an HTTP server implementation for Linux and Windows. Problem A path traversal vulnerability allows remote attackers to execute arbitrary commands in certain configurations if CGI scripts are enabled. Resolution Upgrade to Apache HTTP Server 2.4.5...
Apache HTTP Server path traversal
Added: 10/21/2021 Background Apache HTTP Server is an HTTP server implementation for Linux and Windows. Problem A path traversal vulnerability allows remote attackers to execute arbitrary commands in certain configurations if CGI scripts are enabled. Resolution Upgrade to Apache HTTP Server 2.4.5...
[ASA-202110-1] apache: directory traversal
Arch Linux Security Advisory ASA-202110-1 ========================================= Severity: Critical Date : 2021-10-21 CVE-ID : CVE-2021-42013 Package : apache Type : directory traversal Remote : Yes Link : https://security.archlinux.org/AVG-2450 Summary ======= The package apache before versio...
Apache HTTP Server path traversal
Added: 10/21/2021 Background Apache HTTP Server is an HTTP server implementation for Linux and Windows. Problem A path traversal vulnerability allows remote attackers to execute arbitrary commands in certain configurations if CGI scripts are enabled. Resolution Upgrade to Apache HTTP Server 2.4.5...
Fedora: Security Advisory for httpd (FEDORA-2021-ae829e54ab)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Exploit for Path Traversal in Apache Http_Server
CVE-2021-42013 - Apache HTTP Server 2.4.50 Cara Menjalankan...
Exploit for Path Traversal in Apache Http_Server
CVE-2021-41773 - Apache HTTP Server 2.4.49 Cara Menjalankan...
CVE-2021-35666
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: OSSL Module. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful...
CVE-2021-35666
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: OSSL Module. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful...
Design/Logic Flaw
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: OSSL Module. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful...
Design/Logic Flaw
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful...
CVE-2021-35666
CVE-2021-35666 affects the Oracle HTTP Server (OSSL Module) in Oracle Fusion Middleware, specifically version 11.1.1.9.0. The vulnerability allows an unauthenticated, network-accessible attacker over HTTPS to compromise Oracle HTTP Server, potentially gaining unauthorized access to data. Multiple...
CVE-2021-2480
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is 11.1.1.9.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful...
CVE-2021-2480
CVE-2021-2480 affects Oracle HTTP Server (Web Listener) within Oracle Fusion Middleware. Affected: 11.1.1.9.0. Description indicates an unauthenticated attacker with network access via HTTP can compromise Oracle HTTP Server, with potential unauthorized update/insert/delete of accessible data. The...
Oracle HTTP Server Unauthorized Access Vulnerability (CNVD-2021-102412)
Oracle HTTP Server is a web server component of Oracle Fusion Middleware. an unauthorized access vulnerability exists in the Web Listener component of Oracle HTTP Server version 11.1.1.9.0. A successful attack could result in unauthorized update, insert, or delete access to certain Oracle HTTP...
Vulnerabilities fixed in Oracle Fusion Middleware
Oracle has fixed vulnerabilities in the following Oracle Fusion Middleware products: HTTP Server BAM Business Activity Monitoring WebCenter Portal Business Intelligence Enterprise Edition Real-Time Decision Server Data Integrator Outside In Technology WebLogic Server Enterprise Repository...
Oracle Fusion Middleware和Oracle HTTP Server 输入验证错误漏洞
Oracle HTTP Server is a web server component of Oracle Fusion Middleware. an unauthorized access vulnerability exists in the Web Listener component of Oracle HTTP Server version 11.1.1.9.0. A successful attack could result in unauthorized update, insert, or delete access to certain Oracle HTTP...
Apache HTTP Server Server-Side Request Forgery (CVE-2021-40438)
A Server Side Request Forgery vulnerability exists in Apache HTTP Server. A remote attacker may exploit this issue by making a specially crafted HTTP request. Successful exploitation would allow attackers to create HTTP requests on behalf of the vulnerable server...
Amazon Linux AMI : httpd24 (ALAS-2021-1543)
The version of httpd24 installed on the remote host is prior to 2.4.51-1.94. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1543 advisory. A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...