Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2016-5004

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service resource consumption ...

6.5CVSS6.8AI score0.0644EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.29 views

RHEL 5 : xmlrpc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xmlrpc: XML external entity vulnerability SSRF via a crafted DTD CVE-2016-5002 - xmlrpc: Deserialization ...

9.8CVSS7.8AI score0.14876EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.26 views

RHEL 6 : xmlrpc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xmlrpc: XML external entity vulnerability SSRF via a crafted DTD CVE-2016-5002 - The Content-Encoding HTT...

7.8CVSS7.3AI score0.08275EPSS
Exploits1References2
vulnersOsv
vulnersOsvadded 2022/05/17 2:40 a.m.4 views

ae.teletronics.ejabberd:EjabberdXMLRPCClient (>=1.0.2 <=1.1.0), br.eti.kinoshita:testlink-java-api (>=1.9.0-1 <=1.9.20-1) +281 more potentially affected by CVE-2016-5004 via org.apache.xmlrpc:xmlrpc-common (>=3.0 <=3.1.3)

org.apache.xmlrpc:xmlrpc-common MAVEN version =3.0, =1.0.2, =1.9.0-1, =0.0.1, =0.0.1, =2.6.1.19, =8.1.0.286, =8.1.0.286, =8.1.0.286, =1.0.0.RELEASE, =0.5, =0.5, =0.7, =0.9 and more Source cves: CVE-2016-5004 Source advisory: OSV:GHSA-R2PG-W96P-PCPJ...

6.5CVSS6.7AI score0.0644EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2017/10/31 8:49 p.m.38 views

CVE-2016-5004

The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service resource consumption by decompressing a large file containing zeroes...

6.5CVSS6.2AI score0.0644EPSS
Exploits1References1
Cvelist
Cvelistadded 2017/06/06 6:0 p.m.26 views

CVE-2016-5004

The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service resource consumption by decompressing a large file containing zeroes...

6.3AI score0.0644EPSS
Exploits1References5
CVE
CVEadded 2017/06/06 6:0 p.m.73 views

CVE-2016-5004

CVE-2016-5004 : The vulnerability is in the Content-Encoding header handling in ws-xmlrpc 3.1.3 as used in Apache Archiva, allowing remote attackers to cause a denial of service via decompressing a large file containing zeroes. Documented details confirm the affected component and the impact on a...

6.5CVSS6.2AI score0.0644EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder