Lucene search
K

104 matches found

ATTACKERKB
ATTACKERKB
added 2023/08/14 10:15 p.m.4 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

7.5CVSS7.1AI score0.00545EPSS
Exploits0References3
NVD
NVD
added 2023/08/14 10:15 p.m.17 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

7.5CVSS7.6AI score0.00545EPSS
Exploits0References2
OSV
OSV
added 2023/08/14 10:15 p.m.12 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

7.5CVSS7.2AI score
Exploits0References2
Prion
Prion
added 2023/08/14 10:15 p.m.27 views

Design/Logic Flaw

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

5CVSS7.6AI score0.00545EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/14 12:0 a.m.25 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

7.8AI score0.00545EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/14 12:0 a.m.5 views

Litespeed Technologie OpenLiteSpeed Security Breach

Litespeed Technologie OpenLiteSpeed is an open source web server from Litespeed Technologie. A security vulnerability exists in LiteSpeed OpenLiteSpeed versions prior to 1.7.18, which stems from not strictly validating HTTP request headers...

7.5CVSS6.8AI score0.00545EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/08/14 12:0 a.m.11 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

6.9AI score0.00545EPSS
Exploits0References2
CVE
CVE
added 2023/08/14 12:0 a.m.51 views

CVE-2023-40518

LiteSpeed OpenLiteSpeed

7.5CVSS7.5AI score0.00545EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/02/15 12:0 a.m.8 views

The vulnerability of LiteSpeed and OpenLiteSpeed web application server software lies in the use of an insecure search path, which allows attackers to escalate their privileges.

The vulnerability of LiteSpeed and OpenLiteSpeed web application server software lies in the use of an insecure search path. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

9CVSS7.3AI score0.01154EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/02/10 12:0 a.m.6 views

The vulnerability of the software for server-based web applications, LiteSpeed and OpenLiteSpeed, allows a perpetrator to execute arbitrary code.

The vulnerability of the LiteSpeed and OpenLiteSpeed web application server software relates to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS8.3AI score0.08663EPSS
Exploits1References4Affected Software1
The Hacker News
The Hacker News
added 2022/11/11 10:13 a.m.44 views

Multiple High-Severity Flaws Affect Widely Used OpenLiteSpeed Web Server Software

Multiple high-severity flaws have been uncovered in the open source OpenLiteSpeed Web Server as well as its enterprise variant that could be weaponized to achieve remote code execution. "By chaining and exploiting the vulnerabilities, adversaries could compromise the web server and gain fully...

8.8CVSS2.6AI score0.08663EPSS
Exploits3
NVD
NVD
added 2022/10/27 8:15 p.m.32 views

CVE-2022-0072

Directory Traversal vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Path Traversal. This affects versions from 1.5.11 through 1.5.12, from 1.6.5 through 1.6.20.1, from 1.7.0 before 1.7.16.1...

5.8CVSS0.00971EPSS
Exploits1References2
NVD
NVD
added 2022/10/27 8:15 p.m.25 views

CVE-2022-0074

Untrusted Search Path vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server Container allows Privilege Escalation. This affects versions from 1.6.15 before 1.7.16.1...

8.8CVSS0.01154EPSS
Exploits1References1
OSV
OSV
added 2022/10/27 8:15 p.m.19 views

CVE-2022-0072

Directory Traversal vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Path Traversal. This affects versions from 1.5.11 through 1.5.12, from 1.6.5 through 1.6.20.1, from 1.7.0 before 1.7.16.1...

5.8CVSS6.9AI score
Exploits0References2
NVD
NVD
added 2022/10/27 8:15 p.m.17 views

CVE-2022-0073

Improper Input Validation vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Command Injection. This affects 1.7.0 versions before 1.7.16.1...

8.8CVSS0.08663EPSS
Exploits1References2
OSV
OSV
added 2022/10/27 8:15 p.m.14 views

CVE-2022-0073

Improper Input Validation vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Command Injection. This affects 1.7.0 versions before 1.7.16.1...

8.8CVSS7AI score
Exploits0References2
Prion
Prion
added 2022/10/27 8:15 p.m.31 views

Directory traversal

Directory Traversal vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server dashboards allows Path Traversal. This affects versions from 1.5.11 through 1.5.12, from 1.6.5 through 1.6.20.1, from 1.7.0 before 1.7.16.1...

5CVSS5.7AI score0.00971EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/10/27 7:32 p.m.29 views

CVE-2022-0074 Privilege Escalation in OpenLiteSpeed Web Server

Untrusted Search Path vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server Container allows Privilege Escalation. This affects versions from 1.6.15 before 1.7.16.1...

8.8CVSS8.9AI score0.01154EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/10/27 7:32 p.m.6 views

CVE-2022-0074 Privilege Escalation in OpenLiteSpeed Web Server

Untrusted Search Path vulnerability in LiteSpeed Technologies OpenLiteSpeed Web Server and LiteSpeed Web Server Container allows Privilege Escalation. This affects versions from 1.6.15 before 1.7.16.1...

8.8CVSS8.7AI score0.01154EPSS
Exploits1References1
CVE
CVE
added 2022/10/27 7:32 p.m.202 views

CVE-2022-0074

CVE-2022-0074 affects LiteSpeed/OpenLiteSpeed Web Server and Container. Affected: OpenLiteSpeed Web Server and LiteSpeed Web Server Container, versions 1.6.15–before 1.7.16.1. Root cause: Untrusted Search Path, enabling Privilege Escalation. Impact: Privilege elevation as stated across Red Hat, N...

8.8CVSS8.8AI score0.01154EPSS
In wildExploits1References1Affected Software1
Rows per page
Query Builder