Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 4 : mod_wsgi-3.2-6.AXS4 (AXSA:2014-409:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-409:01 advisory. The modwsgi adapter is an Apache module that provides a WSGI compliant interface for hosting Python based web applications within Apache. The adapter...

7.5CVSS5.7AI score0.08526EPSS
Exploits0References3
OSV
OSV
added 2019/12/09 8:15 p.m.7 views

CVE-2014-0242

modwsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread...

7.5CVSS7.4AI score
Exploits0References4
CVE
CVE
added 2019/12/09 7:33 p.m.102 views

CVE-2014-0242

CVE-2014-0242 affects the mod_wsgi Apache module (pre-3.4 in embedded mode). It can cause memory contents to be leaked via the Content-Type header, enabling disclosure of sensitive information. The issue is coupled with CVE-2014-0240 (privilege escalation). Public advisories and Nessus/Gentoo ent...

7.5CVSS7.2AI score0.08526EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2019/12/09 7:33 p.m.24 views

CVE-2014-0242

modwsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread...

7.5CVSS7.5AI score0.08526EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.19 views

Gentoo Security Advisory GLSA 201412-21

Gentoo Linux Local Security Checks GLSA 201412-21 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS6.5AI score0.08526EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.20 views

GLSA-201412-21 : mod_wsgi: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201412-21 modwsgi: Privilege escalation Two vulnerabilities have been found in modwsgi: Error codes returned by setuid are not properly handled CVE-2014-0240 A memory leak exists via the Content-Type header CVE-2014-0242 Impact : ...

7.5CVSS6.6AI score0.08526EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2014/12/13 12:0 a.m.34 views

mod_wsgi: Privilege escalation

Background modwsgi is an Apache2 module for running Python WSGI applications. Description Two vulnerabilities have been found in modwsgi: Error codes returned by setuid are not properly handled CVE-2014-0240 A memory leak exists via the “Content-Type” header CVE-2014-0242 Impact A local attacker...

7.5CVSS8.2AI score0.08526EPSS
Exploits0
Amazon
Amazon
added 2014/07/09 12:0 a.m.36 views

Important: mod24_wsgi

Issue Overview: It was found that modwsgi did not properly drop privileges if the call to setuid failed. If modwsgi was set up to allow unprivileged users to run WSGI applications, a local user able to run a WSGI application could possibly use this flaw to escalate their privileges on the system...

7.5CVSS7AI score0.08526EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/07/01 12:0 a.m.33 views

RedHat Update for mod_wsgi RHSA-2014:0788-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.08526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/26 12:0 a.m.28 views

RHEL 6 : mod_wsgi (RHSA-2014:0788)

An updated modwsgi package that fixes two security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS6.7AI score0.08526EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/06/26 12:0 a.m.23 views

Oracle Linux 6 : mod_wsgi (ELSA-2014-0788)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2014-0788 advisory. - fix for CVE-2014-0242 1104685 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

7.5CVSS6.8AI score0.08526EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/06/26 12:0 a.m.32 views

CentOS 6 : mod_wsgi (CESA-2014:0788)

An updated modwsgi package that fixes two security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS6.7AI score0.08526EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/06/25 3:40 p.m.28 views

Important: Red Hat Security Advisory: mod_wsgi security update

An updated modwsgi package that fixes two security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS6.7AI score0.08526EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2014/06/25 12:0 a.m.25 views

mod_wsgi security update

3.2-6 - fix for CVE-2014-0242 1104685 3.2-4 - fix for CVE-2014-0240 1104687...

6.2CVSS1.2AI score0.08526EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.23 views

Fedora Update for mod_wsgi FEDORA-2014-6944

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.08526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.28 views

Fedora 20 : mod_wsgi-3.5-1.fc20 (2014-6944)

http://modwsgi.readthedocs.org/en/develop/release-notes/version-3.5.ht ml Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS6.6AI score0.08526EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2014/06/02 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-2222-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.08526EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/05/29 12:0 a.m.131 views

[SECURITY] [DSA 2937-1] mod-wsgi security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2937-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 27, 2014 http://www.debian.org/security/faq -...

6.2CVSS1.7AI score0.08526EPSS
Exploits0
Debian
Debian
added 2014/05/27 2:35 p.m.20 views

[SECURITY] [DSA 2937-1] mod-wsgi security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2937-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 27, 2014 http://www.debian.org/security/faq -...

7.5CVSS8AI score0.08526EPSS
Exploits0
OSV
OSV
added 2014/05/27 12:0 a.m.21 views

DSA-2937-1 mod-wsgi - security update

Bulletin has no description...

7.5CVSS7.5AI score0.08526EPSS
Exploits0
Rows per page
Query Builder