Lucene search
+L

62 matches found

nessus
nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : httpd:2.4 (AXSA:2022-3552:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3552:01 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request...

8.2CVSS7.8AI score0.82295EPSS
Exploits1References5
circl
circl
added 2024/10/15 10:14 a.m.5 views

CVE-2020-35452

creationtimestamp| type| source ---|---|--- 2024-10-15 10:14:15+00:00| seen| Telegram/HfSunJuoYNfbsQCJ20cuXyI7bzH8EMEXzusn30k3vpXeQ...

7.3CVSS6.8AI score0.53191EPSS
Exploits0
nessus
nessus
added 2024/05/11 12:0 a.m.87 views

RHEL 7 : httpd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - httpd: modproxy: X-Forwarded-For dropped by hop-by-hop mechanism CVE-2022-31813 - Apache HTTP Server...

9.1AI score0.90407EPSS
Exploits3References21
rosalinux
rosalinux
added 2023/04/25 11:49 a.m.73 views

Advisory ROSA-SA-2023-2159

Software: httpd 2.4.37 OS: ROSA Virtualization 2.1 packageevrstring: 2.4.37 CVE-ID: CVE-2006-20001 BDU-ID: 2023-01105 CVE-Crit: HIGH CVE-DESC: A vulnerability in the moddav module of the Apache HTTP Server web server is related to an operation exceeding buffer boundaries. Exploitation of the...

9.8CVSS8.9AI score0.90039EPSS
Exploits3
nessus
nessus
added 2023/03/20 12:0 a.m.48 views

CBL Mariner 2.0 Security Update: httpd (CVE-2020-35452)

The version of httpd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-35452 advisory. - Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in...

7.3CVSS7.1AI score0.53191EPSS
Exploits0References2
f5
f5
added 2023/02/21 6:53 p.m.70 views

K27129140: mod_auth_digest vulnerability CVE-2020-35452

Security Advisory Description Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or...

7.3CVSS7.1AI score0.53191EPSS
Exploits0
susecve
susecve
added 2023/02/15 3:51 a.m.6 views

SUSE CVE-2020-35452

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make i...

8.1CVSS7.1AI score0.53191EPSS
Exploits0References10
nessus
nessus
added 2022/05/18 12:0 a.m.65 views

Oracle Linux 8 : httpd:2.4 (ELSA-2022-1915)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1915 advisory. - Resolves: 2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations Tenable has extracted the...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
nessus
nessus
added 2022/05/12 12:0 a.m.86 views

AlmaLinux 8 : httpd:2.4 (ALSA-2022:1915)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1915 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
nessus
nessus
added 2022/05/11 12:0 a.m.245 views

RHEL 8 : httpd:2.4 (RHSA-2022:1915)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1915 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splittin...

8.2CVSS7.6AI score0.82295EPSS
Exploits1References14
osv
osv
added 2022/05/10 8:7 a.m.47 views

RLSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

7.5CVSS8.9AI score0.82295EPSS
Exploits1References7
osv
osv
added 2022/05/10 8:7 a.m.52 views

ALSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS8.9AI score0.82295EPSS
Exploits1References5
almalinux
almalinux
added 2022/05/10 8:7 a.m.86 views

Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS9.3AI score0.82295EPSS
Exploits1References5
nessus
nessus
added 2022/05/10 12:0 a.m.66 views

CentOS 8 : httpd:2.4 (CESA-2022:1915)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1915 advisory. - httpd: Single zero byte stack overflow in modauthdigest CVE-2020-35452 - httpd: Request splitting via HTTP/2 method injection and modproxy...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
cbl_mariner
cbl_mariner
added 2022/04/09 6:51 a.m.28 views

CVE-2020-35452 affecting package httpd for versions less than 2.4.46-10

CVE-2020-35452 affecting package httpd for versions less than 2.4.46-10. A patched version of the package is available...

7.3CVSS7.8AI score0.53191EPSS
Exploits0
openvas
openvas
added 2022/02/13 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1124)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99999EPSS
Exploits5References4
openvas
openvas
added 2022/02/13 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1069)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.68067EPSS
Exploits0References2
openvas
openvas
added 2022/01/28 12:0 a.m.40 views

Mageia: Security Advisory (MGASA-2021-0265)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.68067EPSS
Exploits0References4
openvas
openvas
added 2021/12/31 12:0 a.m.39 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-2878)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.68067EPSS
Exploits0References2
openvas
openvas
added 2021/12/30 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2021-2832)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99999EPSS
Exploits5References4
Rows per page
Query Builder