Lucene search
K

77 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-22575

Malware in sbrugna...

7.1CVSS6AI score0.01185EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-12613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When aprtimeexp or aprosexptime functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may...

7.1CVSS6.7AI score0.01749EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.25 views

CVE-2017-12613 affecting package apr for versions less than 1.6.3-1

CVE-2017-12613 affecting package apr for versions less than 1.6.3-1. A patched version of the package is available...

7.1CVSS7.5AI score0.01749EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.10 views

RHEL 6 : httpd24-apr (RHSA-2018:0316)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0316 advisory. The Apache Portable Runtime APR is a portability library used by the Apache HTTP Server and other projects. It provides a free library of C data...

7.1CVSS6.3AI score0.01749EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.9 views

RHEL 5 : apr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - apr: Out-of-bounds array deref in aprtimeexp functions CVE-2017-12613 - tables/aprhash.c in the Apache...

7.1CVSS7.5AI score0.43346EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.34 views

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by a vulnerability in APR-util (CVE-2017-12613)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerability in APR-util. Vulnerability Details CVEID: CVE-2017-12613 DESCRIPTION: Apache Portable Runtime APR could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds array...

7.1CVSS0.8AI score0.01749EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/28 10:3 p.m.27 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Network Manager IP Edition (CVE-2017-12613).

Summary IBM WebSphere Application Server is shipped with IBM Tivoli Network Manager IP Edition versions 3.9 and 4.1.1; IBM WebSphere Application Server is a required product for IBM Tivoli Network Manager IP Edition version 4.2. Information about a security vulnerability affecting IBM HTTP Server...

7.1CVSS7.1AI score0.01749EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.53 views

Amazon Linux 2023 : apr, apr-devel (ALAS2023-2023-016)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-016 advisory. An out-of-bounds array read in the aprtimeexp functions was fixed in the Apache Portable Runtime 1.6.3 release CVE-2017-12613. The fix for this issue was not carried forward to the APR 1.7.x...

9.8CVSS6.5AI score0.01749EPSS
Exploits0References6
F5 Networks
F5 Networks
added 2023/02/21 6:32 p.m.34 views

K52319810: Apache Portable Runtime vulnerability CVE-2017-12613

Security Advisory Description When aprtimeexp or aprosexptime functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an aprtimeexpt value, potentially revealing the contents of a...

7.1CVSS6.5AI score0.01749EPSS
Exploits0Affected Software18
SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.3 views

SUSE CVE-2017-12613

When aprtimeexp or aprosexptime functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an aprtimeexpt value, potentially revealing the contents of a different static heap value or...

3.4CVSS7AI score0.01749EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2023/02/02 12:0 a.m.26 views

Slackware: Security Advisory (SSA:2023-032-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.01749EPSS
Exploits0References5
Slackware Linux
Slackware Linux
added 2023/02/01 10:29 p.m.39 views

[slackware-security] apr

New apr packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/apr-1.7.2-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Integer Overflow or Wraparound vulnerability in aprencode...

9.8CVSS7.4AI score0.01749EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.38 views

Slackware Linux 15.0 / current apr Multiple Vulnerabilities (SSA:2023-032-01)

The version of apr installed on the remote host is prior to 1.7.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-032-01 advisory. - When aprtimeexp or aprosexptime functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 a...

9.8CVSS6.4AI score0.01749EPSS
Exploits0References3
Veracode
Veracode
added 2022/06/04 10:45 p.m.30 views

Out-Of-Bounds Read

An out-of-bounds array read in the aprtimeexp functions was fixed in the Apache Portable Runtime 1.6.3 release CVE-2017-12613. The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue...

7.1CVSS7.1AI score0.01749EPSS
Exploits0References33Affected Software1
Prion
Prion
added 2021/08/23 10:15 a.m.28 views

Format string

An out-of-bounds array read in the aprtimeexp functions was fixed in the Apache Portable Runtime 1.6.3 release CVE-2017-12613. The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue...

3.6CVSS6.7AI score0.01749EPSS
Exploits0References17Affected Software2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:1322-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.3AI score0.01749EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2018:1196-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.3AI score0.01749EPSS
Exploits0References4
OSV
OSV
added 2021/04/07 1:23 a.m.3 views

OESA-2021-1097 apr security update

Security Fixes: An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.CVE-2017-12613...

7.1CVSS6.7AI score0.01749EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for apr (EulerOS-SA-2019-1374)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.4AI score0.01749EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for apr (EulerOS-SA-2017-1303)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.4AI score0.01749EPSS
Exploits0References2
Rows per page
Query Builder