Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2013-0349)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.67718EPSS
Exploits15References4
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.33 views

openSUSE Security Update : nginx (openSUSE-SU-2013:1745-1)

The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 On openSUSE 12.2, nginx was updated to version 1.4.4 stable - CVE-2013-4547 a character following an unescaped space in a request line was handled incorrectly bnc851295 - bugfix:...

7.5CVSS7.5AI score0.67718EPSS
Exploits15References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.41 views

openSUSE Security Update : nginx-1.0 (openSUSE-SU-2013:1791-1)

The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-913. The text...

7.5CVSS7.5AI score0.67718EPSS
Exploits15References3
OpenVAS
OpenVAS
added 2013/12/03 12:0 a.m.37 views

Fedora Update for nginx FEDORA-2013-21826

Check for the Version of nginx OpenVAS Vulnerability Test Fedora Update for nginx FEDORA-2013-21826 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

7.5CVSS9.6AI score0.67718EPSS
Exploits15References2
Amazon
Amazon
added 2013/12/02 12:0 a.m.50 views

Important: nginx

Issue Overview: nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI. Affected Packages: nginx Issue Correction: Run yum update nginx or yum update --advisory ALAS-2013-249 to update your system. New...

7.5CVSS7.9AI score0.67718EPSS
Exploits15
Tenable Nessus
Tenable Nessus
added 2013/11/27 12:0 a.m.119 views

nginx < 1.4.4 / 1.5.7 ngx_parse_http Security Bypass

According to the self-reported version in the Server response header, the installed version of nginx is greater than 0.8.41 but prior to 1.4.4 / 1.5.7. It is, therefore, affected by a security bypass vulnerability in 'ngxhttpparse.c' when a file with a space at the end of the URI is requested...

7.5CVSS7.6AI score0.67718EPSS
Exploits15References5
securityvulns
securityvulns
added 2013/11/26 12:0 a.m.98 views

[SECURITY] [DSA 2802-1] nginx security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2802-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 21, 2013 http://www.debian.org/security/faq -...

7.5CVSS1.4AI score0.67718EPSS
Exploits15
Tenable Nessus
Tenable Nessus
added 2013/11/25 12:0 a.m.46 views

Debian DSA-2802-1 : nginx - restriction bypass

Ivan Fratric of the Google Security Team discovered a bug in nginx, a web server, which might allow an attacker to bypass security restrictions by using a specially crafted request. The oldstable distribution squeeze is not affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security,...

7.5CVSS7.5AI score0.67718EPSS
Exploits15References4
Tenable Nessus
Tenable Nessus
added 2013/11/25 12:0 a.m.42 views

Mandriva Linux Security Advisory : nginx (MDVSA-2013:281)

Updated nginx package fixes security vulnerability : Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...

7.5CVSS7.5AI score0.67718EPSS
Exploits15References2
Nginx
Nginx
added 2013/11/23 6:0 p.m.294 views

Request line parsing vulnerability

Request line parsing vulnerability Severity: medium CVE-2013-4547 Not vulnerable: 1.5.7+, 1.4.4+ Vulnerable: 0.8.41-1.5.6...

7.5CVSS9AI score0.67718EPSS
Exploits15References1Affected Software1
CVE
CVE
added 2013/11/23 6:0 p.m.433 views

CVE-2013-4547

CVE-2013-4547 affects nginx versions 0.8.41–1.4.3 and 1.5.x prior to 1.5.7. Root cause: an unescaped space character in a URI can bypass intended restrictions, enabling remote bypass of access controls as described in the entry. Impact: restriction bypass is possible; exploitation and mitigation ...

7.5CVSS9.2AI score0.67718EPSS
Exploits15References9Affected Software1
Mageia
Mageia
added 2013/11/22 7:12 p.m.53 views

Updated nginx packages fix CVE-2013-4547

Updated nginx package fixes security vulnerability: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...

7.5CVSS3AI score0.67718EPSS
Exploits15References2
OSV
OSV
added 2013/11/22 7:12 p.m.9 views

MGASA-2013-0349 Updated nginx packages fix CVE-2013-4547

Updated nginx package fixes security vulnerability: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...

7.5CVSS6.3AI score0.67718EPSS
Exploits15References3
ALT Linux
ALT Linux
added 2013/11/22 12:0 a.m.22 views

Security fix for the ALT Linux 9 package nginx version 1.4.4-alt1

Nov. 22, 2013 Denis Smirnov 1.4.4-alt1 - 1.4.4 ALT 29604 - CVE-2013-4547...

7.5CVSS7.1AI score0.67718EPSS
Exploits15
Debian
Debian
added 2013/11/21 9:35 p.m.44 views

[SECURITY] [DSA 2802-1] nginx security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2802-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 21, 2013 http://www.debian.org/security/faq -...

7.5CVSS9.3AI score0.67718EPSS
Exploits15
FreeBSD
FreeBSD
added 2013/11/19 12:0 a.m.64 views

nginx -- Request line parsing vulnerability

The nginx project reports: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...

7.5CVSS9.1AI score0.67718EPSS
Exploits15References1
Circl
Circl
added 2013/11/19 12:0 a.m.12 views

CVE-2013-4547

creationtimestamp| type| source ---|---|--- 2013-11-19 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38846 2021-08-25 13:22:18+00:00| seen| https://t.me/truesecator/2035...

7.5CVSS7.5AI score0.67718EPSS
Exploits15References2
Rows per page
Query Builder