CVE-2020-36109

ASUS RT-AX86U router firmware below version under 9.0.0.4386 has a buffer overflow in the blockingrequest.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data...

CVE-2020-36109

CVE-2020-36109 affects ASUS RT-AX86U (and related models) where firmware below 9.0.0.4_386 has a buffer overflow in the httpd module’s blocking_request.cgi function. The vulnerability can lead to code execution when an attacker crafts malicious input; multiple sources describe this as a potential...

ASUS RT-AX86U 安全漏洞

ASUS RT-AX86U is a wireless router from ASUS China. ASUS RT-AX86U router firmware is vulnerable to a buffer overflow in the blocking request.cgi function of the httpd module, which could be exploited by an attacker to construct malicious data leading to code execution...

PT-2021-11914 · Asus · Asus Rt-Ax86

Name of the Vulnerable Software and Affected Versions: ASUS RT-AX86U router firmware versions prior to 9.0.0.4 386 Description: The issue is related to a buffer overflow in the blocking request.cgi function of the httpd module. This can cause code execution when an attacker constructs malicious...

CentOS 8 : httpd:2.4 (CESA-2020:4751)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4751 advisory. - httpd: modhttp2: DoS via slow, unneeded request bodies CVE-2018-17189 - httpd: modhttp2: read-after-free on a string compare CVE-2019-0196 - httpd:...

CentOS 8 : httpd:2.4 (CESA-2020:3714)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:3714 advisory. - httpd: Push diary crash on specifically crafted HTTP/2 header CVE-2020-9490 Note that Nessus has not tested for this issue but has instead relied only on the...

CentOS 8 : httpd:2.4 (CESA-2019:3436)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3436 advisory. - httpd: modauthdigest: access control bypass due to race condition CVE-2019-0217 - httpd: URL normalization inconsistency CVE-2019-0220 Note that Ness...

CentOS 8 : httpd:2.4 (CESA-2019:0980)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:0980 advisory. - httpd: privilege escalation from modules scripts CVE-2019-0211 - httpd: modssl: access control bypass when using per-location client certification...

Apache Httpd < 2.4.48 : Improper Handling of Insufficient Privileges

Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows...

Selea Targa IP OCR-ANPR Camera - CSRF Add Admin

Exploit Title: Selea Targa IP OCR-ANPR Camera - CSRF Add Admin Date: 07.11.2020 Exploit Author: LiquidWorm Vendor Homepage: https://www.selea.com Selea Targa IP OCR-ANPR Camera CSRF Add Admin Exploit Vendor: Selea s.r.l. Product web page: https://www.selea.com Affected version: Model: iZero Targa...

CVE-2020-29019

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

CVE-2020-29019

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

Stack overflow

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

CVE-2020-29019

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

CVE-2020-25680

A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. The validation of the certificate whether CN and hostname are matching stopped working and allow connecting to the back-end work. The highest threat from...

Design/Logic Flaw

A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. The validation of the certificate whether CN and hostname are matching stopped working and allow connecting to the back-end work. The highest threat from...

CVE-2020-25680

CVE-2020-25680 is a vulnerability in JBoss Core Services Apache HTTP Server (JBCS httpd) affecting the 2.4.37 line (notably SP3 in the CVE entry; RHSA-2020:4384 references SP5). The issue allows connecting to a backend worker via SSL when the backend keystore file’s ID is 'unknown', due to broken...

CVE-2020-25680

A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. The validation of the certificate whether CN and hostname are matching stopped working and allow connecting to the back-end work. The highest threat from...

FortiWeb is vulnerable to a buffer overflow

A stack-based buffer overflow vulnerability in FortiWeb may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header...

CVE-2020-35785

NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365...