Lucene search
K

9 matches found

Rockylinux
Rockylinux
added 6 days ago6 views

httpd security, bug fix, and enhancement update

An update is available for httpd. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful, efficient, and...

9.8CVSS6.9AI score0.00805EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 6 days ago10 views

RockyLinux 10 : httpd (RLSA-2026:34109)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:34109 advisory. httpd: incomplete fix for CVE-2023-38709 CVE-2024-42516 httpd: NULL pointer dereference via specially crafted request CVE-2026-29169 httpd: Apache HTTP...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References27
RedHat Linux
RedHat Linux
added 2026/07/01 9:31 a.m.8 views

Important: Red Hat Security Advisory: httpd security, bug fix, and enhancement update

An update for httpd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.03914EPSS
Exploits2References8
OSV
OSV
added 2026/07/01 8:5 a.m.6 views

SUSE-SU-2026:2717-1 Security update for apache2

This update for apache2 fixes the following issues - CVE-2026-29167: modldap per-dir use-after-free bsc1267976. - CVE-2026-29170: modproxyftp XSS bsc1267977. - CVE-2026-34355: modproxyhtml buffer overflow bsc1267978. - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer...

9.8CVSS7.3AI score0.11471EPSS
Exploits8References27
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

RHEL 10 : httpd (RHSA-2026:34109)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34109 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: incomplete fix...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References22
RedhatCVE
RedhatCVE
added 2026/06/18 2:43 p.m.9 views

CVE-2026-34355

A vulnerability has been identified in the Apache HTTP Server. If the server is configured to connect to a malicious or compromised backend server, an attacker could exploit this flaw to bypass security controls or run unauthorized code on the system. Mitigation Disable the modproxyhtml module if...

7.5CVSS5.3AI score0.00805EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/10 2:28 a.m.12 views

SUSE CVE-2026-34355

A buffer overflow in modproxyhtml in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

6.5CVSS5.6AI score0.00805EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-34355

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow in modproxyhtml in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version...

7.5CVSS6.2AI score0.00805EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/08 3:20 p.m.136 views

CVE-2026-34355 Apache HTTP Server: mod_proxy_html buffer overflow

A buffer overflow in modproxyhtml in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

0.00805EPSS
Exploits0References1
Rows per page
Query Builder