CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987457 advisory. Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into lo...

7.5CVSS7.2AI score0.00651EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•9 views

Unity Linux 20.1070e Security Update: httpd (UTSA-2025-987461)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987461 advisory. A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. AddType and...

6.2CVSS7AI score0.25097EPSS

Exploits3References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: httpd (UTSA-2025-987456)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987456 advisory. In some modssl configurations on Apache HTTP Server versions through to 2.4.63, an HTTP desynchronisation attack allows a man-in-the-middle attacker to hijack an HTT...

7.4CVSS7.2AI score0.00446EPSS

Exploits0References3

Positive Technologies•added 2025/10/04 12:0 a.m.•1 views

PT-2025-40833

CVE-2025-61892 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-61892 Published : Oct. 4, 2025, 3:15 a.m. | 4 hours, 13 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...

6.4AI score

Exploits0References1

Positive Technologies•added 2025/10/04 12:0 a.m.•1 views

PT-2025-40831

CVE-2025-61890 - Apache HTTP Server Authentication Bypass CVE ID : CVE-2025-61890 Published : Oct. 4, 2025, 3:15 a.m. | 4 hours, 13 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

6.4AI score

Exploits0References1

Positive Technologies•added 2025/10/04 12:0 a.m.•1 views

PT-2025-40829

CVE-2025-61888 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2025-61888 Published : Oct. 4, 2025, 3:15 a.m. | 4 hours, 13 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

6.4AI score

Exploits0References1

Positive Technologies•added 2025/10/04 12:0 a.m.•1 views

PT-2025-40830

CVE-2025-61889 - Apache HTTP Server Command Injection CVE ID : CVE-2025-61889 Published : Oct. 4, 2025, 3:15 a.m. | 4 hours, 13 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

6.8AI score

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-54772

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00242EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-38335

Malicious code in bioql PyPI...

6.2CVSS6.3AI score0.00246EPSS

Exploits0References3