61157 matches found
Fixed in Apache Tomcat 9.0.115
Moderate: Incomplete OCSP verification checks CVE-2026-24734 When using an OCSP responder, Tomcat's FFM integration with OpenSSL did not complete verification or freshness checks on the OCSP response which could allow certificate revocation to be bypassed. Affects: 9.0.83 to 9.0.114 This issue wa...
Exploit for CVE-2026-22444
CVE-2026-22444 Apache Solr UNC Path Validation Vulnerability...
PT-2026-4608
CVE-2023-32719 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2023-32719 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4607
CVE-2023-32718 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2023-32718 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4612
CVE-2024-36998 - Apache HTTP Server SQL Injection CVE ID : CVE-2024-36998 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS details...
PT-2026-4613
CVE-2024-45724 - Apache HTTP Server Remote File Inclusion CVE ID : CVE-2024-45724 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4623
CVE-2024-45742 - Apache HTTP Server SQL Injection CVE ID : CVE-2024-45742 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS details...
PT-2026-4618
CVE-2024-45726 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2024-45726 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4626
CVE-2024-53248 - Apache Struts Command Injection CVE ID : CVE-2024-53248 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS details,...
PT-2026-4628
CVE-2024-53250 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2024-53250 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4629
CVE-2024-53251 - Apache HTTP Server Remote Buffer Overflow CVE ID : CVE-2024-53251 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVS...
PT-2026-4609
CVE-2023-32720 - Apache HTTP Server Remote Code Execution CVE ID : CVE-2023-32720 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4610
CVE-2024-22166 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2024-22166 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
PT-2026-4627
CVE-2024-53249 - Apache HTTP Server Cross-Site Scripting CVE ID : CVE-2024-53249 Published : Jan. 22, 2026, 10:16 a.m. | 50 minutes ago Description : Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2025-55753)
The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-55753 advisory. - An integer overflow in the case of failed ACME certificate renewal leads, after a number of...
Azure Linux 3.0 Security Update: influxdb (CVE-2019-0205)
The version of influxdb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-0205 advisory. - In Apache Thrift all versions up to and including 0.12.0, a server or client May run into an endless loop...
Azure Linux 3.0 Security Update: libarrow (CVE-2024-52338)
The version of libarrow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-52338 advisory. - Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package versions 4.0.0...
Oracle Primavera Unifier (January 2026 CPU)
The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2026 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: Integration Apache Tika. Supported versions th...
Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2025-65082)
The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-65082 advisory. - Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP...
CBL Mariner 2.0 Security Update: CBL-Mariner Releases (CVE-2025-66200)
The version of CBL-Mariner Releases installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-66200 advisory. - moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users...