Lucene search
K

4 matches found

OSV
OSV
added 2026/05/18 3:38 p.m.6 views

CLSA-2026-1779118679 Fix of 8 CVEs

SECURITY UPDATE: modproxyajp heap buffer over-read in ajpmsggetstring - debian/patches/CVE-2026-34032.patch: add buffer checks in modules/proxy/ajpmsg.c. - CVE-2026-34032 SECURITY UPDATE: AJP getter functions off-by-one out-of-bounds reads - debian/patches/CVE-2026-33857.patch: fix length checks ...

9.8CVSS5.9AI score0.01325EPSS
Exploits2References1
OSV
OSV
added 2026/05/15 4:17 p.m.8 views

CLSA-2026-1778847162 httpd: Fix of CVE-2026-28780

CVE-2026-28780: heap-based buffer overflow in ajpmsgcheckheader in modproxyajp when proxying to a malicious AJP backend that returns an oversized response, allowing a 4-byte out-of-bounds write past the heap buffer...

9.8CVSS6AI score0.01325EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/05/05 9:29 p.m.6 views

CVE-2026-28780

Heap-based Buffer Overflow vulnerability in modproxyajp of Apache HTTP Server. If modproxyajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to modproxyajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer. This issue...

9.8CVSS5.8AI score0.01325EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/06/18 8:54 a.m.2 views

Apache Tomcat denial of service (DoS) vulnerability

Overview Apache Tomcat from The Apache Software Foundation contains a denial of service DoS vulnerability. Apache Tomcat from the Apache Software Foundation is an implementation of the Java Servlet and JavaServer Page JSP technologies. If Tomcat receives a request with an invalid header via the...

5CVSS5AI score0.10053EPSS
Exploits1References25
Rows per page
Query Builder