Lucene search
K

18 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:3970-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.90647EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2015:1851-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS9.1AI score0.9986EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.32 views

SUSE SLES11 Security Update : apache2-mod_jk (SUSE-SU-2018:3970-1)

This update for apache2-modjk fixes the following issues : Security issues fixed : CVE-2018-11759: Fixed connector path traversal due to mishandled HTTP requests in httpd bsc1114612. CVE-2014-8111: Apache Tomcat Connectors modjk ignored JkUnmount rules for subtrees of previous JkMount rules, whic...

7.5CVSS6.3AI score0.90647EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.52 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0848)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0848 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
RedHat Linux
RedHat Linux
added 2015/08/18 6:51 p.m.47 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 2.1.0 security update

An update for Red Hat JBoss Web Server 2.1.0 that fixes two security issues is now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

5CVSS6.9AI score0.07109EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/08/18 6:48 p.m.4 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 2.1.0 security update

An update for Red Hat JBoss Web Server 2.1.0 that fixes two security issues is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

5CVSS6.9AI score0.07109EPSS
Exploits0References4
Mageia
Mageia
added 2015/07/01 1:23 p.m.36 views

Updated apache-mod_jk package fixes security vulnerability

An information disclosure flaw due to incorrect JkMount/JkUnmount directives processing was found in the Apache 2 module modjk to forward requests from the Apache web server to Tomcat. A JkUnmount rule for a subtree of a previous JkMount rule could be ignored. This could allow a remote attacker t...

5CVSS5.7AI score0.07109EPSS
Exploits0References2
Debian
Debian
added 2015/06/09 6:22 p.m.40 views

[SECURITY] [DLA 240-1] libapache-mod-jk security update

Package : libapache-mod-jk Version : 1:1.2.30-1squeeze2 CVE ID : CVE-2014-8111 Debian Bug : 783233 An information disclosure flaw due to incorrect JkMount/JkUnmount directives processing was found in the Apache 2 module modjk to forward requests from the Apache web server to Tomcat. A JkUnmount...

5CVSS6.6AI score0.07109EPSS
Exploits0
securityvulns
securityvulns
added 2015/06/08 12:0 a.m.89 views

[SECURITY] [DSA 3278-1] libapache-mod-jk security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3278-1 [email protected] http://www.debian.org/security/ Markus Koschany June 03, 2015 http://www.debian.org/security/faq -...

5CVSS1.8AI score0.07109EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/06/04 12:0 a.m.36 views

Debian DSA-3278-1 : libapache-mod-jk - security update

An information disclosure flaw due to incorrect JkMount/JkUnmount directives processing was found in the Apache 2 module modjk to forward requests from the Apache web server to Tomcat. A JkUnmount rule for a subtree of a previous JkMount rule could be ignored. This could allow a remote attacker t...

5CVSS6.3AI score0.07109EPSS
Exploits0References5
Debian
Debian
added 2015/06/03 7:14 p.m.26 views

[SECURITY] [DSA 3278-1] libapache-mod-jk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3278-1 [email protected] http://www.debian.org/security/ Markus Koschany June 03, 2015 http://www.debian.org/security/faq -...

5CVSS2AI score0.07109EPSS
Exploits0
CVE
CVE
added 2015/04/21 5:0 p.m.103 views

CVE-2014-8111

CVE-2014-8111 is documented in connected sources as affecting the Apache Tomcat Connectors (mod_jk) before 1.2.41, where JkUnmount rules for subtrees of previous JkMount rules are ignored, enabling a remote attacker to access otherwise restricted artifacts via unspecified vectors. The OpenVAS ent...

5CVSS5.4AI score0.07109EPSS
Exploits0References14Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.55 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0846)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0846 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.38 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0847)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0847 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
RedHat Linux
RedHat Linux
added 2015/04/16 4:26 p.m.71 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2015/04/16 4:17 p.m.47 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2015/04/16 4:13 p.m.57 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
Apache Tomcat
Apache Tomcat
added 2015/04/16 12:0 a.m.30 views

Fixed in Apache Tomcat JK Connector 1.2.41

Important: Information disclosure CVE-2014-8111 Multiple adjacent slashes in a request URI were not collapsed to a single slash before comparing the request URI to the configured mount and unmount patterns. It is therefore possible for an attacker to use a request URI containing multiple adjacent...

5CVSS5.2AI score0.07109EPSS
Exploits0Affected Software1
Rows per page
Query Builder