Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.9 views

MiracleLinux 7 : httpd24-1.1-19.el7, httpd24-httpd-2.4.34-15.el7, httpd24-nghttp2-1.7.1-8.el7 (AXSA:2019-4418:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4418:01 advisory. httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modauthdigest: access control bypass due to race condition CVE-2019-0217...

7.5CVSS6.8AI score0.81466EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.37 views

RHEL 6 / 7 : httpd24-httpd (RHSA-2019:4126)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:4126 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of...

7.5CVSS7AI score0.81466EPSS
Exploits4References22
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.52 views

Rocky Linux 8 : httpd:2.4 (RLSA-2020:4751)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4751 advisory. - In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request...

9.1CVSS6.5AI score0.81466EPSS
Exploits6References25
OSV
OSV
added 2023/08/31 12:13 p.m.0 views

BELL-CVE-2019-10097 CVE-2019-10097 does not affect BellSoft software

Bulletin has no description...

7.2CVSS7AI score0.52873EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.3 views

SUSE CVE-2019-10097

In Apache HTTP Server 2.4.32-2.4.39, when modremoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer deference. This vulnerability could only be triggered by a trusted pro...

4.9CVSS8.1AI score0.52873EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.43 views

Slackware: Security Advisory (SSA:2020-091-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.6AI score0.81466EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.47 views

SUSE: Security Advisory (SUSE-SU-2019:2237-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.81466EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.93 views

Oracle Linux 8 : httpd:2.4 (ELSA-2020-4751)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4751 advisory. - Resolves: 1823263 CVE-2020-1934 - CVE-2020-1934 httpd: modproxyftp use of uninitialized value - Resolves: 1823259 - CVE-2020-1927 httpd:2.4/httpd:...

9.1CVSS6.9AI score0.89744EPSS
Exploits6References11
RedHat Linux
RedHat Linux
added 2020/04/06 7:28 p.m.128 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP2 security update

Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of...

9.1CVSS6.5AI score0.81466EPSS
Exploits6References11
OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.58 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1359)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.52873EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2020/03/05 12:0 a.m.6 views

Apache httpd Server Buffer Overflow (CVE-2019-10097)

A buffer overflow vulnerability exists in Apache httpd server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

6CVSS3.7AI score0.52873EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/02/25 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1155)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.52873EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/07 2:17 a.m.53 views

Security Bulletin: Aspera Web Application (Faspex, Console, Orchestrator, Shares) are affected by Apache vulnerabilities (CVE-2019-9517, CVE-2019-10097)

Summary Aspera Web Application Faspex, Console, Shares, Orchestrator have affected the following Apache vulnerabilities. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of...

7.8CVSS1.7AI score0.52873EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.60 views

Security Bulletin: Multiple vulnerabilities in the IBM i HTTP Server affect IBM i.

Summary HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Data Buffering attack. By opening the HTTP/2 window so the peer can send withou...

9.1CVSS1.1AI score0.81466EPSS
Exploits6Affected Software1
Amazon
Amazon
added 2019/10/28 12:0 a.m.71 views

Medium: httpd

Issue Overview: A cross-site scripting vulnerability was found in Apache httpd, affecting the modproxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.CVE-2019-10092 A...

7.2CVSS7.1AI score0.81466EPSS
Exploits5
IBM Security Bulletins
IBM Security Bulletins
added 2019/09/30 12:42 p.m.58 views

Security Bulletin: Multiple vulnerabilities in Apache HTTP Server affect Rational Build Forge (CVE-2019-9517, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098)

Summary There are multiple vulnerabilities in Apache HTTP Server affecting IBM Rational Build Forge. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Data Buffering attack. By opening the HTTP/2 window so the pee...

9.1CVSS1AI score0.81466EPSS
Exploits6Affected Software1
Cvelist
Cvelist
added 2019/09/26 2:21 p.m.51 views

CVE-2019-10097

In Apache HTTP Server 2.4.32-2.4.39, when modremoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer deference. This vulnerability could only be triggered by a trusted pro...

8.1AI score0.52873EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2019/09/18 12:0 a.m.58 views

Ubuntu: Security Advisory (USN-4113-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.1AI score0.81466EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2019/09/03 12:0 a.m.256 views

openSUSE Security Update : apache2 (openSUSE-2019-2051) (Internal Data Buffering)

This update for apache2 fixes the following issues : Security issues fixed : - CVE-2019-9517: Fixed HTTP/2 implementations that are vulnerable to unconstrained interal data buffering bsc1145575. - CVE-2019-10081: Fixed modhttp2 that is vulnerable to memory corruption on early pushes bsc1145742. -...

9.1CVSS6.2AI score0.81466EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2019/08/29 12:0 a.m.77 views

SUSE SLED15 / SLES15 Security Update : apache2 (SUSE-SU-2019:2237-1) (Internal Data Buffering)

This update for apache2 fixes the following issues : Security issues fixed : CVE-2019-9517: Fixed HTTP/2 implementations that are vulnerable to unconstrained interal data buffering bsc1145575. CVE-2019-10081: Fixed modhttp2 that is vulnerable to memory corruption on early pushes bsc1145742...

9.1CVSS6.6AI score0.81466EPSS
Exploits6References19
Rows per page
Query Builder