Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2020-11984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE CVE-2020-11984 Note that Nessus relies on the presence of the package as...

9.8CVSS6.4AI score0.90039EPSS
Exploits2References2
Amazon
Amazon
added 2024/10/31 12:0 a.m.42 views

Important: httpd24

Issue Overview: Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE CVE-2020-11984 Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to...

9.8CVSS6.8AI score0.90039EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.39 views

Ubuntu 16.04 ESM : uWSGI vulnerability (USN-5054-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5054-2 advisory. USN-5054-1 fixed a vulnerability in uWSGI for Ubuntu 18.04 LTS. This update provides the corresponding fixes for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable ha...

9.8CVSS6.7AI score0.90039EPSS
Exploits2References2
OSV
OSV
added 2023/08/31 12:15 p.m.2 views

BELL-CVE-2020-11984 CVE-2020-11984 does not affect BellSoft software

Bulletin has no description...

9.8CVSS5.8AI score0.90039EPSS
Exploits2References1
Rosalinux
Rosalinux
added 2023/04/25 11:49 a.m.73 views

Advisory ROSA-SA-2023-2159

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: 2.4.37 CVE-ID: CVE-2006-20001 BDU-ID: 2023-01105 CVE-Crit: HIGH CVE-DESC: A vulnerability in the moddav module of the Apache HTTP Server web server is related to an operation exceeding buffer boundaries. Exploitation of the...

9.8CVSS8.9AI score0.90039EPSS
Exploits3
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.107 views

K67175700: Apache vulnerabilities CVE-2020-9490, CVE-2020-11984, CVE-2020-11993

Security Advisory Description CVE-2020-9490 Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via...

9.8CVSS6.5AI score0.90039EPSS
Exploits4
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5054-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.90039EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.43 views

Mageia: Security Advisory (MGASA-2020-0327)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.90039EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2021/08/30 12:0 a.m.68 views

Ubuntu 18.04 LTS : uWSGI vulnerability (USN-5054-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5054-1 advisory. Felix Wilhelm discovered a buffer overflow flaw in the modproxyuwsgi module. An attacker could use this vulnerability to provoke an information disclosure or...

9.8CVSS7.4AI score0.90039EPSS
Exploits2References2
CBLMariner
CBLMariner
added 2021/07/08 9:56 p.m.28 views

CVE-2020-11984 affecting package httpd 2.4.43-

CVE-2020-11984 affecting package httpd 2.4.43-. An upgraded version of the package is available that resolves this issue...

9.8CVSS9.9AI score0.90039EPSS
Exploits2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2020:2311-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.90039EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.76 views

Oracle Linux 8 : httpd:2.4 (ELSA-2021-1809)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1809 advisory. - Resolves: 1677590 - CVE-2018-17199 httpd:2.4/httpd: modsessioncookie does not respect expiry time - Resolves: 1869075 - CVE-2020-11984 httpd:2.4/http...

9.8CVSS6.9AI score0.90039EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.93 views

RHEL 8 : httpd:2.4 (RHSA-2021:1809)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1809 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie...

9.8CVSS7.2AI score0.90039EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.125 views

CentOS 8 : httpd:2.4 (CESA-2021:1809)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1809 advisory. - httpd: modsessioncookie does not respect expiry time CVE-2018-17199 - httpd: modproxyuwsgi buffer overflow CVE-2020-11984 - httpd: modhttp2 concurren...

9.8CVSS7.1AI score0.90039EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2021/05/18 2:25 p.m.121 views

Moderate: Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.90039EPSS
Exploits4References13
AlmaLinux
AlmaLinux
added 2021/05/18 6:8 a.m.90 views

Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS8.4AI score0.90039EPSS
Exploits4References4
OSV
OSV
added 2021/05/18 6:8 a.m.52 views

ALSA-2021:1809 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS7.4AI score0.90039EPSS
Exploits4References4
OSV
OSV
added 2021/05/18 6:8 a.m.65 views

RLSA-2021:1809 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS7.4AI score0.90039EPSS
Exploits4References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2020:2344-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.90039EPSS
Exploits4References6
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-1602)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.90039EPSS
Exploits4References2
Rows per page
Query Builder