Lucene search
+L

62 matches found

nessus
nessus
added 2025/03/06 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2020-11984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE CVE-2020-11984 Note that Nessus relies on the presence of the package as...

9.8CVSS6.4AI score0.90039EPSS
Exploits2References2
amazon
amazon
added 2024/10/31 12:0 a.m.42 views

Important: httpd24

Issue Overview: Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE CVE-2020-11984 Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to...

9.8CVSS6.8AI score0.90039EPSS
Exploits4
nessus
nessus
added 2023/10/23 12:0 a.m.39 views

Ubuntu 16.04 ESM : uWSGI vulnerability (USN-5054-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5054-2 advisory. USN-5054-1 fixed a vulnerability in uWSGI for Ubuntu 18.04 LTS. This update provides the corresponding fixes for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable ha...

9.8CVSS6.7AI score0.90039EPSS
Exploits2References2
osv
osv
added 2023/08/31 12:15 p.m.3 views

BELL-CVE-2020-11984 CVE-2020-11984 does not affect BellSoft software

Bulletin has no description...

9.8CVSS5.8AI score0.90039EPSS
Exploits2References1
rosalinux
rosalinux
added 2023/04/25 11:49 a.m.73 views

Advisory ROSA-SA-2023-2159

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: 2.4.37 CVE-ID: CVE-2006-20001 BDU-ID: 2023-01105 CVE-Crit: HIGH CVE-DESC: A vulnerability in the moddav module of the Apache HTTP Server web server is related to an operation exceeding buffer boundaries. Exploitation of the...

9.8CVSS8.9AI score0.90039EPSS
Exploits3
f5
f5
added 2023/02/21 6:33 p.m.107 views

K67175700: Apache vulnerabilities CVE-2020-9490, CVE-2020-11984, CVE-2020-11993

Security Advisory Description CVE-2020-9490 Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via...

9.8CVSS6.5AI score0.90039EPSS
Exploits4
openvas
openvas
added 2023/01/27 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5054-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.90039EPSS
Exploits2References2
openvas
openvas
added 2022/01/28 12:0 a.m.43 views

Mageia: Security Advisory (MGASA-2020-0327)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.90039EPSS
Exploits4References5
nessus
nessus
added 2021/08/30 12:0 a.m.68 views

Ubuntu 18.04 LTS : uWSGI vulnerability (USN-5054-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5054-1 advisory. Felix Wilhelm discovered a buffer overflow flaw in the modproxyuwsgi module. An attacker could use this vulnerability to provoke an information disclosure or...

9.8CVSS7.4AI score0.90039EPSS
Exploits2References2
cbl_mariner
cbl_mariner
added 2021/07/08 9:56 p.m.29 views

CVE-2020-11984 affecting package httpd 2.4.43-

CVE-2020-11984 affecting package httpd 2.4.43-. An upgraded version of the package is available that resolves this issue...

9.8CVSS9.9AI score0.90039EPSS
Exploits2
openvas
openvas
added 2021/06/09 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2020:2311-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.90039EPSS
Exploits4References2
nessus
nessus
added 2021/05/26 12:0 a.m.76 views

Oracle Linux 8 : httpd:2.4 (ELSA-2021-1809)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1809 advisory. - Resolves: 1677590 - CVE-2018-17199 httpd:2.4/httpd: modsessioncookie does not respect expiry time - Resolves: 1869075 - CVE-2020-11984 httpd:2.4/http...

9.8CVSS6.9AI score0.90039EPSS
Exploits4References4
nessus
nessus
added 2021/05/19 12:0 a.m.125 views

CentOS 8 : httpd:2.4 (CESA-2021:1809)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1809 advisory. - httpd: modsessioncookie does not respect expiry time CVE-2018-17199 - httpd: modproxyuwsgi buffer overflow CVE-2020-11984 - httpd: modhttp2 concurren...

9.8CVSS7.1AI score0.90039EPSS
Exploits4References4
nessus
nessus
added 2021/05/19 12:0 a.m.93 views

RHEL 8 : httpd:2.4 (RHSA-2021:1809)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1809 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie...

9.8CVSS7.2AI score0.90039EPSS
Exploits4References18
redhat
redhat
added 2021/05/18 2:25 p.m.121 views

Moderate: Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.90039EPSS
Exploits4References13
almalinux
almalinux
added 2021/05/18 6:8 a.m.90 views

Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS8.4AI score0.90039EPSS
Exploits4References4
osv
osv
added 2021/05/18 6:8 a.m.52 views

ALSA-2021:1809 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS7.4AI score0.90039EPSS
Exploits4References4
osv
osv
added 2021/05/18 6:8 a.m.65 views

RLSA-2021:1809 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modproxyuwsgi buffer overflow CVE-2020-11984 httpd: modhttp2 concurrent pool usage CVE-2020-11993 For mor...

9.8CVSS7.4AI score0.90039EPSS
Exploits4References12
openvas
openvas
added 2021/04/19 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2020:2344-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.90039EPSS
Exploits4References6
openvas
openvas
added 2021/03/12 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-1602)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.90039EPSS
Exploits4References2
Rows per page
Query Builder