Lucene search
K

26 matches found

OSV
OSV
added yesterday4 views

RLSA-2026:34109 Important: httpd security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: incomplete fix for CVE-2023-38709 CVE-2024-42516 httpd: NULL pointer dereference via specially crafted request CVE-2026-29169 httpd: Apache HTTP Server: Heap-based Buffer...

7.7CVSS6AI score0.00805EPSS
Exploits0References8
OSV
OSV
added 2026/07/01 12:0 a.m.3 views

ALSA-2026:34109 Important: httpd security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: incomplete fix for CVE-2023-38709 CVE-2024-42516 httpd: NULL pointer dereference via specially crafted request CVE-2026-29169 httpd: Apache HTTP Server: Heap-based Buffer...

9.8CVSS6.8AI score0.03914EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-44185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: fro...

7.3CVSS6AI score0.00598EPSS
Exploits0References4
NVD
NVD
added 2026/06/08 4:16 p.m.11 views

CVE-2026-44185

Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

7.3CVSS0.00598EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:22 p.m.9 views

CVE-2026-44185

Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

5.4AI score0.00598EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : firefox-91.11.0-2.0.1.el7.AXS7 (AXSA:2022-3440:15)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3440:15 advisory. Mozilla: CSP sandbox header without allow-scripts can be bypassed via retargeted javascript: URI CVE-2022-34468 Mozilla: Use-after-free in nsSHistor...

9.8CVSS8.5AI score0.23941EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-37427

Malicious code in bioql PyPI...

4.3CVSS7.3AI score0.0058EPSS
Exploits0References5
OSV
OSV
added 2022/12/22 8:15 p.m.8 views

CVE-2022-34472

If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

4.3CVSS8.8AI score
Exploits0References4
Prion
Prion
added 2022/12/22 8:15 p.m.21 views

Design/Logic Flaw

If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

4.3CVSS5.7AI score0.0058EPSS
Exploits0References4Affected Software3
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.8 views

CVE-2022-34472

If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

6.4AI score0.0058EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.55 views

CVE-2022-34472

If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

4.3CVSS7.5AI score0.0058EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/07/14 9:28 a.m.90 views

USN-5512-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, spoof the UI, bypass CSP restrictions, or execute...

9.8CVSS7.5AI score0.23941EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/07/14 12:0 a.m.105 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Thunderbird vulnerabilities (USN-5512-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5512-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a...

9.8CVSS7.7AI score0.23941EPSS
Exploits1References18
OSV
OSV
added 2022/07/07 8:4 a.m.5 views

SUSE-SU-2022:2320-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution bmo1771381 - CVE-2022-2226: An email with a mismatching OpenPGP signature date was accepted as valid bmo1775441 - CVE-2022-31744: CSP bypass enabling...

9.8CVSS8.1AI score0.23941EPSS
Exploits2References12
Tenable Nessus
Tenable Nessus
added 2022/07/07 12:0 a.m.43 views

Oracle Linux 9 : thunderbird (ELSA-2022-5482)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5482 advisory. 91.11.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Reference oracle-indexhtml within Requires...

9.8CVSS7.4AI score0.23941EPSS
Exploits1References10
OSV
OSV
added 2022/07/06 11:1 a.m.8 views

SUSE-SU-2022:2289-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 91.11.0 ESR MFSA 2022-25 bsc1200793: - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution bmo1771381 - CVE-2022-31744: CSP bypass enabling stylesheet injection...

9.8CVSS8.2AI score0.23941EPSS
Exploits2References11
UbuntuCve
UbuntuCve
added 2022/07/05 12:0 a.m.50 views

CVE-2022-34472

If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown. This vulnerability affects Firefox 102, Firefox ESR 91.11, Thunderbird 102, and Thunderbird 91.11...

4.3CVSS6.8AI score0.0058EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/07/01 2:0 a.m.5 views

Mozilla: Unavailable PAC file resulted in OCSP requests being blocked

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that if a PAC URL was set and the server that hosts the PAC was not reachable, OCSP requests are blocked, resulting in incorrect error pages being shown...

4.3CVSS7.3AI score0.0058EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/07/01 12:0 a.m.82 views

Mozilla Thunderbird < 91.11

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 91.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-26 advisory. - The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10. Some of these...

9.8CVSS7.8AI score0.23941EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2022/06/30 10:1 p.m.5 views

Mozilla: Unavailable PAC file resulted in OCSP requests being blocked

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that if a PAC URL was set and the server that hosts the PAC was not reachable, OCSP requests are blocked, resulting in incorrect error pages being shown...

4.3CVSS7.3AI score0.0058EPSS
Exploits0References5
Rows per page
Query Builder