Lucene search
K

11652 matches found

RedHat Linux
RedHat Linux
added 2019/02/18 4:58 p.m.3 views

httpd: Use-after-free on HTTP/2 stream shutdown

When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, the reporter...

5.9CVSS7.2AI score0.13436EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/02/18 4:58 p.m.5 views

httpd: <FilesMatch> bypass with a trailing newline in the file name

In Apache httpd 2.4.0 to 2.4.29, the expression specified in could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally blocked, but only by matching the...

8.1CVSS7.3AI score0.86006EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/02/18 4:58 p.m.227 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update

An update is now available for JBoss Core Services on RHEL 6 and RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.6AI score0.90647EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.4 views

httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications

It has been discovered that the modsession module of Apache HTTP Server httpd, through version 2.4.29, has an improper input validation flaw in the way it handles HTTP session headers in some configurations. A remote attacker may influence their content by using a "Session" header...

5.3CVSS7.2AI score0.10118EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.2 views

mod_jk: connector path traversal due to mishandled HTTP requests in httpd

The Apache Web Server httpd specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK modjk Connector 1.2.0 to 1.2.44 did not handle some edge cases correctly. If only a sub-set of the URLs supported by Tomcat were exposed via httpd, then it was...

7.5CVSS7.3AI score0.90647EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.5 views

httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause DoS

A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.30 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial of Service attack against users of modcachesocache. The vulnerability is considere...

7.5CVSS7.2AI score0.70783EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.4 views

httpd: <FilesMatch> bypass with a trailing newline in the file name

In Apache httpd 2.4.0 to 2.4.29, the expression specified in could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally blocked, but only by matching the...

8.1CVSS7.3AI score0.86006EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.161 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP1 security update

Red Hat JBoss Core Services Pack Apache Server 2.4.29 Service Pack 1 packages for Microsoft Windows and Oracle Solaris are now available. Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

9.8CVSS6.7AI score0.90647EPSS
Exploits1References14
Prion
Prion
added 2019/02/06 8:29 p.m.37 views

Stack overflow

libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgoing NTLM type-3 header lib/vauth/ntlm.c:Curlauthcreatentlmtype3message, generates the request HTTP header contents based on previously received data. The check that exists ...

7.5CVSS7.1AI score0.12771EPSS
Exploits1References15Affected Software12
NVD
NVD
added 2019/02/06 4:29 p.m.13 views

CVE-2019-1003015

An XML external entity processing vulnerability exists in Jenkins Job Import Plugin 2.1 and earlier in src/main/java/org/jenkins/ci/plugins/jobimport/client/RestApiClient.java that allows attackers with the ability to control the HTTP server Jenkins queried in preparation of job import to read...

9.1CVSS9AI score0.01825EPSS
Exploits0References1
Prion
Prion
added 2019/02/06 4:29 p.m.25 views

Xxe

An XML external entity processing vulnerability exists in Jenkins Job Import Plugin 2.1 and earlier in src/main/java/org/jenkins/ci/plugins/jobimport/client/RestApiClient.java that allows attackers with the ability to control the HTTP server Jenkins queried in preparation of job import to read...

6.4CVSS8.9AI score0.01825EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.108 views

Apache HTTP Server 2.4.37 mod_ssl DoS Vulnerability - Linux

A bug exists in the way modssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause modssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using OpenSSL version 1.1.1 or...

7.5CVSS7.3AI score0.59942EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.427 views

Apache HTTP Server 2.4.37 mod_ssl DoS Vulnerability - Windows

A bug exists in the way modssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause modssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using OpenSSL version 1.1.1 or...

7.5CVSS7.3AI score0.59942EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.344 views

Apache HTTP Server < 2.4.38 mod_session_cookie Vulnerability - Linux

In Apache HTTP Server modsession checks the session expiry time before decoding the session. This causes session expiry time to be ignored for modsessioncookie sessions since the expiry time is loaded when the session is decoded. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions...

7.5CVSS7.8AI score0.19994EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.816 views

Apache HTTP Server < 2.4.38 mod_session_cookie Vulnerability - Windows

In Apache HTTP Server modsession checks the session expiry time before decoding the session. This causes session expiry time to be ignored for modsessioncookie sessions since the expiry time is loaded when the session is decoded. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions...

7.5CVSS7.8AI score0.19994EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.113 views

Apache HTTP Server < 2.4.38 HTTP/2 DoS Vulnerability - Linux

By sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol. SPDX-FileCopyrightText: 2019...

5.3CVSS6.5AI score0.19404EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/02/05 12:0 a.m.78 views

Oracle Secure Global Desktop Multiple Vulnerabilities (January 2019 CPU)

The version of Oracle Secure Global Desktop installed on the remote host is 5.4 and is missing a security patch from the January 2019 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability exists in Apache HTTP Server 2.4.17 to...

5.9CVSS6.2AI score0.94494EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2019/02/05 12:0 a.m.260 views

Apache HTTP Server < 2.4.38 HTTP/2 DoS Vulnerability - Windows

By sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 connections. A possible mitigation is to not enable the h2 protocol. SPDX-FileCopyrightText: 2019...

5.3CVSS6.5AI score0.19404EPSS
Exploits0References1
Hacker One
Hacker One
added 2019/02/03 5:29 p.m.33 views

Node.js third-party modules: [takeapeek] XSS via HTML tag injection in directory lisiting page

I was taking a peek at takeapeek module and found it is vulnerable to XSS via malicious injection in directory listing. It allows execution of arbitrary JS code. Module module name: takeapeek version: 0.2.2 npm page: https://www.npmjs.com/package/takeapeek Module Description A simple static...

0.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:35 a.m.41 views

Security Bulletin: Vulnerabilities in Apache affect the IBM Flex System Manager (FSM): (CVE-2013-6438, CVE-2014-0098, CVE-2014-0226, CVE-2014-0231)

Summary Vulnerabilities in Apache affect the IBM Flex System Manager FSM: CVE-2013-6438, CVE-2014-0098, CVE-2014-0226, CVE-2014-0231 Vulnerability Details Abstract Vulnerabilities in Apache affect the IBM Flex System Manager FSM: CVE-2013-6438, CVE-2014-0098, CVE-2014-0226, CVE-2014-0231 Content...

6.8CVSS1AI score0.85744EPSS
Exploits6
Rows per page
Query Builder