Lucene search
K

162 matches found

OSV
OSV
added 2025/12/05 11:15 a.m.9 views

AZL-71851 CVE-2025-55753 affecting package mod_md 2.2.7-4

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

7.5CVSS5.8AI score0.00402EPSS
Exploits0References1
OSV
OSV
added 2025/12/05 11:15 a.m.5 views

AZL-71858 CVE-2025-55753 affecting package mod_md 2.4.26-3

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

7.5CVSS5.8AI score0.00402EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/05 10:12 a.m.75 views

CVE-2025-55753 Apache HTTP Server: mod_md (ACME), unintended retry intervals

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

0.00402EPSS
Exploits0References1
CVE
CVE
added 2025/12/05 10:12 a.m.492 views

CVE-2025-55753

CVE-2025-55753 affects Apache HTTP Server (2.4.30–2.4.65). The issue is an integer overflow during failed ACME certificate renewals that, after ~30 days in default configs, causes the backoff timer to become 0. Thereafter, renewal attempts occur repeatedly without delays until success, potentiall...

7.5CVSS6.8AI score0.00402EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/12/05 10:12 a.m.8 views

CVE-2025-55753

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

7.5CVSS7.6AI score0.00402EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-55753

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer...

7.5CVSS7.2AI score0.00402EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/10 12:0 a.m.4 views

PT-2025-49182

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.66 Description An issue exists in Apache HTTP Server on Windows when AllowEncodedSlashes is enabled and MergeSlashes is disabled. This can allow for Server-Side Request Forgery SSRF, potentially leading...

7.8CVSS6.6AI score0.00771EPSS
Exploits0References29
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.6 views

mod_md bug fix and enhancement update

An update is available for modmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.5...

6.8AI score
Exploits0
OSV
OSV
added 2024/09/13 7:57 p.m.25 views

RHSA-2020:2263 Red Hat Security Advisory: httpd24-httpd and httpd24-mod_md security and enhancement update

Bulletin has no description...

6.1CVSS7.6AI score0.73981EPSS
Exploits1References13
Rockylinux
Rockylinux
added 2024/08/21 2:52 p.m.75 views

httpd:2.4 security update

An update is available for module.modmd, module.modhttp2, modhttp2, httpd, modmd, module.httpd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

9.8CVSS9.5AI score0.41611EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/07/23 12:0 a.m.59 views

httpd:2.4 security update

httpd 2.4.37-65.0.1.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.1 - Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue in modrewrite CVE-2024-38474 - Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in modproxy CVE-2024-38473 - Resolves:...

9.8CVSS7.3AI score0.99957EPSS
Exploits2
Rockylinux
Rockylinux
added 2024/07/02 2:10 p.m.106 views

httpd:2.4/httpd security update

An update is available for module.modmd, module.modhttp2, modhttp2, modmd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache...

7.3CVSS6.8AI score0.03914EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/07/01 12:0 a.m.216 views

httpd:2.4/httpd security update

httpd 2.4.37-65.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65 - Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response splitting CVE-2023-38709 modhttp2 modmd...

7.3CVSS6.9AI score0.03914EPSS
Exploits0
Rockylinux
Rockylinux
added 2024/06/14 1:59 p.m.158 views

httpd:2.4 security update

An update is available for httpd, modmd, modhttp2, module.modmd, module.modhttp2, module.httpd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

7.5CVSS7.8AI score0.03024EPSS
Exploits1
Oracle linux
Oracle linux
added 2024/04/11 12:0 a.m.57 views

httpd:2.4/mod_http2 security update

httpd modhttp2 1.15.7-8.5 - Resolves: RHEL-29816 - httpd:2.4/modhttp2: httpd: CONTINUATION frames DoS CVE-2024-27316 modmd...

7.5CVSS7.4AI score0.91327EPSS
Exploits2
Oracle linux
Oracle linux
added 2023/09/12 12:0 a.m.75 views

httpd:2.4 security update

httpd 2.4.37-56.0.1.7 - Resolves: 2176723 - CVE-2023-27522 httpd:2.4/httpd: modproxyuwsgi HTTP response splitting 2.4.37-56.0.1.6 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-56.6 - Resolves: 2190133 - modrewrite...

9.8CVSS7.7AI score0.8377EPSS
Exploits5
Rockylinux
Rockylinux
added 2023/05/18 7:17 p.m.105 views

2.4 bug fix update

An update is available for modhttp2, modmd, httpd, module.httpd, module.modmd, module.modhttp2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

6.9AI score
Exploits0
Rockylinux
Rockylinux
added 2023/04/12 1:40 a.m.56 views

httpd:2.4 security update

An update is available for modhttp2, modmd, httpd, module.httpd, module.modmd, module.modhttp2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

9.8CVSS9.3AI score0.8377EPSS
Exploits5
Rockylinux
Rockylinux
added 2023/02/22 1:8 a.m.71 views

httpd:2.4 security and bug fix update

An update is available for modhttp2, modmd, httpd, module.httpd, module.modmd, module.modhttp2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd package...

9CVSS7.7AI score0.57941EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.43 views

K48373922: Apache vulnerablilty CVE-2018-8011

Security Advisory Description By specially crafting HTTP requests, the modmd challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server. Fixed in Apache HTTP Server 2.4.34 Affected 2.4.33. CVE-2018-8011 Impact There is no impac...

7.5CVSS6.4AI score0.51714EPSS
Exploits0
Rows per page
Query Builder