Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5772 matches found

OpenVAS
OpenVASadded 2023/06/01 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-2019)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.8377EPSS
Exploits5References2
OpenVAS
OpenVASadded 2023/06/01 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-1998)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.8377EPSS
Exploits5References2
Rockylinux
Rockylinuxadded 2023/05/25 7:53 p.m.64 views

httpd bug fix update

An update is available for httpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful, efficient, and...

6.9AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2023/05/24 8:59 a.m.8 views

httpd: HTTP request splitting with mod_rewrite and mod_proxy

A vulnerability was found in httpd. This security issue occurs when some modproxy configurations on Apache HTTP Server allow an HTTP Request Smuggling attack. Configurations are affected when modproxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern...

9.8CVSS6.6AI score0.8377EPSS
Exploits5References5
RedHat Linux
RedHat Linuxadded 2023/05/24 8:59 a.m.96 views

Important: Red Hat Security Advisory: httpd24-httpd security update

An update for httpd24-httpd is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

9.8CVSS6.7AI score0.8377EPSS
Exploits5References2
Tenable Nessus
Tenable Nessusadded 2023/05/24 12:0 a.m.85 views

RHEL 7 : httpd24-httpd (RHSA-2023:3292)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3292 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: HTTP request splitting wi...

9.8CVSS7AI score0.8377EPSS
Exploits5References4
NVD
NVDadded 2023/05/23 1:15 a.m.32 views

CVE-2023-31741

There is a command injection vulnerability in the Linksys E2000 router with firmware version 1.0.06. If an attacker gains web management privileges, they can inject commands into the post request parameters wlssid, wlant, wlrate, WLattenctl, ttcpnum, ttcpsize in the httpd s StartEPI function,...

7.2CVSS7.3AI score0.02688EPSS
Exploits1References2
NVD
NVDadded 2023/05/22 5:15 p.m.14 views

CVE-2023-31742

There is a command injection vulnerability in the Linksys WRT54GL router with firmware version 4.30.18.006. If an attacker gains web management privileges, they can inject commands into the post request parameters wlant, wlrate, WLattenctl, ttcpnum, ttcpsize in the httpd s StartEPI function,...

7.2CVSS7.3AI score0.10582EPSS
Exploits1References2
Prion
Prionadded 2023/05/22 5:15 p.m.22 views

Command injection

There is a command injection vulnerability in the Linksys WRT54GL router with firmware version 4.30.18.006. If an attacker gains web management privileges, they can inject commands into the post request parameters wlant, wlrate, WLattenctl, ttcpnum, ttcpsize in the httpd s StartEPI function,...

5.8CVSS7.3AI score0.10582EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2023/05/22 12:0 a.m.13 views

CVE-2023-31742

There is a command injection vulnerability in the Linksys WRT54GL router with firmware version 4.30.18.006. If an attacker gains web management privileges, they can inject commands into the post request parameters wlant, wlrate, WLattenctl, ttcpnum, ttcpsize in the httpd s StartEPI function,...

7.6AI score0.10582EPSS
Exploits1References2
Rockylinux
Rockylinuxadded 2023/05/18 7:17 p.m.104 views

2.4 bug fix update

An update is available for modhttp2, modmd, httpd, module.httpd, module.modmd, module.modhttp2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2023/05/17 12:0 a.m.33 views

(Pwn2Own) Lexmark MC3224i fax_change_faxtrace_setting Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark MC3224i printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the faxchangefaxtracesettings script. The issue results from the lack...

8.8CVSS7.3AI score0.37835EPSS
Exploits4References1
Tenable Nessus
Tenable Nessusadded 2023/05/16 12:0 a.m.44 views

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2023-1932)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool heap memory location...

9CVSS7AI score0.57941EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/05/16 12:0 a.m.43 views

EulerOS Virtualization 2.10.1 : httpd (EulerOS-SA-2023-1901)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool heap memory location...

9CVSS7AI score0.57941EPSS
Exploits0References4
OpenVAS
OpenVASadded 2023/05/16 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-1932)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.7AI score0.57941EPSS
Exploits0References2
OSV
OSVadded 2023/05/12 1:15 p.m.1 views

CVE-2023-2682

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

6.3CVSS5.6AI score0.01948EPSS
Exploits0References2
OpenVAS
OpenVASadded 2023/05/10 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-1847)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.8377EPSS
Exploits5References2
Tenable Nessus
Tenable Nessusadded 2023/05/09 12:0 a.m.40 views

EulerOS 2.0 SP10 : httpd (EulerOS-SA-2023-1805)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Some modproxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affect...

9.8CVSS7AI score0.8377EPSS
Exploits5References3
OpenVAS
OpenVASadded 2023/05/09 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-1805)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.8377EPSS
Exploits5References2
OpenVAS
OpenVASadded 2023/05/09 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2023-1823)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.8377EPSS
Exploits5References2
Rows per page
Query Builder