Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-38477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - null pointer dereference in modproxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Users are...

7.5CVSS7.3AI score0.01924EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SSRF in Apache HTTP Server with modproxy loaded allows an attacker to send outbound proxy requests to a URL controlled by the attacker. Requires an unlikely...

7.5CVSS6.9AI score0.00684EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2024/09/04 2:52 p.m.3 views

puppet-foreman: An authentication bypass vulnerability exists in Foreman

An authentication bypass vulnerability has been identified in Foreman when deployed with External Authentication, due to the puppet-foreman configuration. This issue arises from Apache's modproxy not properly unsetting headers because of restrictions on underscores in HTTP headers, allowing...

9.8CVSS5.7AI score0.00216EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/09/04 12:0 a.m.3 views

PT-2024-38689

Name of the Vulnerable Software and Affected Versions Pulpcore versions 3.0 and later Gunicorn versions prior to 22.0 Description An authentication bypass issue has been identified due to Apache's mod proxy not properly unsetting headers because of restrictions on underscores in HTTP headers,...

9.8CVSS9.9AI score0.004EPSS
Exploits0References24
Positive Technologies
Positive Technologiesadded 2024/09/04 12:0 a.m.4 views

PT-2024-38030

Name of the Vulnerable Software and Affected Versions Foreman versions 6.13 through 6.15 Foreman with Gunicorn versions prior to 22.0 Description An authentication bypass issue has been identified in Foreman when deployed with External Authentication, due to the puppet-foreman configuration. This...

9.8CVSS9.8AI score0.00216EPSS
Exploits0References23
OSV
OSVadded 2022/06/09 5:15 p.m.1 views

UBUNTU-CVE-2022-26377

Inconsistent Interpretation of HTTP Requests 'HTTP Request Smuggling' vulnerability in modproxyajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions...

7.5CVSS7.3AI score0.32376EPSS
Exploits1References7
seebug.org
seebug.orgadded 2009/12/24 12:0 a.m.10 views

apache mod-proxy 1.3.31 缓冲区溢出漏洞

No description provided by source...

7.1AI score
Exploits0
UbuntuCve
UbuntuCveadded 2004/08/06 4:0 a.m.29 views

CVE-2004-0492

Heap-based buffer overflow in proxyutil.c for modproxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied...

10CVSS6.6AI score0.23714EPSS
Exploits0References1
Rows per page
Query Builder