Lucene search
+L

29 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/28 12:0 a.m.55 views

Oracle Linux 8 : httpd:2.4 (ELSA-2024-3121)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3121 advisory. - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 - Resolves: RHEL-29817 - httpd:2.4/modhttp2: httpd:...

9.8CVSS7.2AI score0.99999EPSS
Exploits30References3
Oracle linux
Oracle linux
added 2024/05/24 12:0 a.m.78 views

httpd:2.4 security update

httpd 2.4.37-64.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-64 - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.37-63 - modxml2enc: fix media type handling Resolves: RHEL-14321 modhttp2 1.15.7-10 - Resolves: RHEL-29817 -...

7.5CVSS7.5AI score0.99999EPSS
Exploits30
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.53 views

Rocky Linux 8 : httpd:2.4 (RLSA-2020:4751)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4751 advisory. - In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request...

9.1CVSS6.5AI score0.81466EPSS
Exploits6References25
Tenable Nessus
Tenable Nessus
added 2023/04/25 12:0 a.m.57 views

NewStart CGSL MAIN 6.06 : httpd Multiple Vulnerabilities (NS-SA-2023-1001)

The remote NewStart CGSL host, running version MAIN 6.06, has httpd packages installed that are affected by multiple vulnerabilities: - In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily...

9.8CVSS7.1AI score0.97108EPSS
Exploits11References29
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.6 views

SUSE CVE-2019-10082

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown...

5.3CVSS7.8AI score0.16549EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.43 views

Slackware: Security Advisory (SSA:2020-091-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.6AI score0.81466EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.41 views

Mageia: Security Advisory (MGASA-2019-0407)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.6AI score0.81466EPSS
Exploits6References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.48 views

SUSE: Security Advisory (SUSE-SU-2019:2237-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.81466EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.94 views

Oracle Linux 8 : httpd:2.4 (ELSA-2020-4751)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4751 advisory. - Resolves: 1823263 CVE-2020-1934 - CVE-2020-1934 httpd: modproxyftp use of uninitialized value - Resolves: 1823259 - CVE-2020-1927 httpd:2.4/httpd:...

9.1CVSS6.9AI score0.89744EPSS
Exploits6References11
RedHat Linux
RedHat Linux
added 2020/04/06 7:28 p.m.128 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP2 security update

Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of...

9.1CVSS6.5AI score0.81466EPSS
Exploits6References11
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.270 views

EulerOS Virtualization for ARM 64 3.0.6.0 : httpd (EulerOS-SA-2020-1359)

According to the versions of the httpd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP Server 2.4 release 2.4.37 and prior, modsession checks the session expiry time before decoding the...

9.1CVSS6.8AI score0.52873EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.58 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1359)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.52873EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/02/25 12:0 a.m.50 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1155)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.52873EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.61 views

Security Bulletin: Multiple vulnerabilities in the IBM i HTTP Server affect IBM i.

Summary HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Data Buffering attack. By opening the HTTP/2 window so the peer can send withou...

9.1CVSS1.1AI score0.81466EPSS
Exploits6Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/10/22 12:0 a.m.54 views

Photon OS 3.0: Httpd PHSA-2019-3.0-0035

An update of the httpd package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130101;...

9.1CVSS7.7AI score0.81466EPSS
Exploits6References5
OpenVAS
OpenVAS
added 2019/10/18 12:0 a.m.49 views

Apache HTTP Server Memory Access Vulnerability - Linux

Apache HTTP Server is prone to a memory access vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver";...

9.1CVSS7.7AI score0.16549EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/10/18 12:0 a.m.90 views

Apache HTTP Server Memory Access Vulnerability - Windows

Apache HTTP Server is prone to a memory access vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver";...

9.1CVSS7.7AI score0.16549EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/09/30 12:42 p.m.59 views

Security Bulletin: Multiple vulnerabilities in Apache HTTP Server affect Rational Build Forge (CVE-2019-9517, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098)

Summary There are multiple vulnerabilities in Apache HTTP Server affecting IBM Rational Build Forge. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Data Buffering attack. By opening the HTTP/2 window so the pee...

9.1CVSS1AI score0.81466EPSS
Exploits6Affected Software1
NVD
NVD
added 2019/09/26 4:15 p.m.37 views

CVE-2019-10082

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown...

9.1CVSS9AI score0.16549EPSS
Exploits0References16
Debian CVE
Debian CVE
added 2019/09/26 2:40 p.m.39 views

CVE-2019-10082

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown...

9.1CVSS6.5AI score0.16549EPSS
Exploits0
Rows per page
Query Builder