CVE-2021-28838

Null pointer dereference vulnerability in D-Link DAP-2310 2,10RC039, DAP-2330 1.10RC036 BETA, DAP-2360 2.10RC055, DAP-2553 3.10rc039 BETA, DAP-2660 1.15rc131b, DAP-2690 3.20RC115 BETA, DAP-2695 1.20RC093, DAP-3320 1.05RC027 BETA and DAP-3662 1.05rc069 in the sbin/httpd binary. The crash happens a...

CVE-2021-28838

CVE-2021-28838 describes a null pointer dereference in the sbin/httpd binary affecting multiple D-Link devices (DAP-2310, DAP-2330, DAP-2360, DAP-2553, DAP-2660, DAP-2690, DAP-2695, DAP-3320, DAP-3662). The crash is triggered when a specific network packet is sent to httpd, occurring at an atoi o...

D-Link DAP-2310和DAP-2330 代码问题漏洞

The D-Link DAP-2310 is a single-band wireless network access point for small businesses or schools that need a fast and reliable wireless network.The D-Link DAP-2330 is a wireless N300 single-band PoE access point. A null pointer dereference vulnerability exists in multiple D-Link products, which...

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-2298)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-6481 CVE-2021-32791 affecting package httpd for versions less than 2.4.52-1

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

AZL-6482 CVE-2021-32792 affecting package httpd for versions less than 2.4.52-1

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, there is an XSS vulnerability in when using OIDCPreservePost ...

Medium: httpd24

Issue Overview: A flaw was found in Apache httpd. The modproxywstunnel module tunnels non-upgraded connections. CVE-2019-17567 A flaw was found in HTTPd. In some Apache HTTP Server versions, unprivileged local users can stop HTTPd on Windows. The highest threat from this vulnerability is to syste...

CVE-2020-11984 affecting package httpd 2.4.43-

CVE-2020-11984 affecting package httpd 2.4.43-. An upgraded version of the package is available that resolves this issue...

CVE-2020-11993 affecting package httpd 2.4.43-

CVE-2020-11993 affecting package httpd 2.4.43-. An upgraded version of the package is available that resolves this issue...

CVE-2021-26690 affecting package httpd 2.4.46-6

CVE-2021-26690 affecting package httpd 2.4.46-6. A patched version of the package is available...

CVE-2021-30641 affecting package httpd 2.4.46-6

CVE-2021-30641 affecting package httpd 2.4.46-6. A patched version of the package is available...

CVE-2020-13950 affecting package httpd 2.4.46-6

CVE-2020-13950 affecting package httpd 2.4.46-6. A patched version of the package is available...

CVE-2020-35452 affecting package httpd 2.4.46-6

CVE-2020-35452 affecting package httpd 2.4.46-6. A patched version of the package is available...

CVE-2021-26691 affecting package httpd 2.4.46-6

CVE-2021-26691 affecting package httpd 2.4.46-6. A patched version of the package is available...

Netgear DGN2200v1 远程命令执行

Exploit Title: Netgear DGN2200v1 - Remote Command Execution RCE Unauthenticated Date: 02.07.2021 Exploit Author: SivertPL Vendor Homepage: https://www.netgear.com/ Version: All prior to v1.0.0.60 !/usr/bin/python """ NETGEAR DGN2200v1 Unauthenticated Remote Command Execution Author: SivertPL...

F5 Networks BIG-IP : Apache HTTPD vulnerability (K23153696)

In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL. CVE-2020-1927 Impact An attacker can abuse this vulnerability in a phishin...

F5 Networks BIG-IP : Apache HTTPD vulnerability (K25126370)

In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL. CVE-2019-10098 Impact An attacker can abuse this vulnerability in a phishing...

Photon OS 1.0: Httpd PHSA-2021-1.0-0409

An update of the httpd package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-1.0-0409. The text itself is copyright C VMware, Inc...

Netgear DGN2200v1 - Remote Command Execution (Unauthenticated) Exploit

Exploit Title: Netgear DGN2200v1 - Remote Command Execution RCE Unauthenticated Exploit Author: SivertPL Vendor Homepage: https://www.netgear.com/ Version: All prior to v1.0.0.60 !/usr/bin/python """ NETGEAR DGN2200v1 Unauthenticated Remote Command Execution Author: SivertPL email protected Date:...

Medium: httpd

Issue Overview: A flaw was found in Apache httpd. The modproxywstunnel module tunnels non-upgraded connections. CVE-2019-17567 A flaw was found in HTTPd. In some Apache HTTP Server versions, unprivileged local users can stop HTTPd on Windows. The highest threat from this vulnerability is to syste...