Lucene search
+L

59 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.13 views

MiracleLinux 7 : httpd24-httpd-2.4.34-23.el7.5 (AXSA:2022-3871:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3871:03 advisory. httpd: modsed: Read/write beyond bounds CVE-2022-23943 httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: NULL...

9.8CVSS8.5AI score0.99999EPSS
Exploits8References17
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : httpd:2.4 (AXSA:2022-3552:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3552:01 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request...

8.2CVSS7.8AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2021-36160

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A carefully crafted request uri-path can cause modproxyuwsgi to read above the allocated memory and crash DoS. This issue affects Apache HTTP Server versions...

7.5CVSS7.6AI score0.62887EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.112 views

K13401920: Apache HTTPD vulnerability CVE-2021-36160

Security Advisory Description A carefully crafted request uri-path can cause modproxyuwsgi to read above the allocated memory and crash DoS. This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 inclusive. CVE-2021-36160 Impact A remote attacker, through a crafted request, can exploit t...

7.5CVSS7.8AI score0.62887EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/02 5:31 p.m.41 views

Security Bulletin: IBM Aspera Orchestrator affected by denial of service vulnerability (CVE-2021-36160)

Summary The following vulnerability has been addressed in IBM Aspera Orchestrator 4.0.1. Vulnerability Details CVEID:CVE-2021-36160 DESCRIPTION: Apache HTTP Server is vulnerable to a denial of service, caused by an out-of-bounds read in modproxyuwsgi. By sending a specially crafted request...

7.5CVSS8.4AI score0.62887EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2022/10/26 8:15 p.m.71 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links...

9.8CVSS7AI score0.82295EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/10/26 8:5 p.m.74 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

9.8CVSS7.6AI score0.82295EPSS
Exploits5References22
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.90 views

Moderate: Red Hat Security Advisory: httpd24-httpd security and bug fix update

An update for httpd24-httpd is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS7.2AI score0.99999EPSS
Exploits8References17
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.42 views

Ubuntu: Security Advisory (USN-5090-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.99999EPSS
Exploits6References5
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.66 views

Oracle Linux 8 : httpd:2.4 (ELSA-2022-1915)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1915 advisory. - Resolves: 2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations Tenable has extracted the...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.87 views

AlmaLinux 8 : httpd:2.4 (ALSA-2022:1915)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1915 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.245 views

RHEL 8 : httpd:2.4 (RHSA-2022:1915)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1915 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splittin...

8.2CVSS7.6AI score0.82295EPSS
Exploits1References14
OSV
OSV
added 2022/05/10 8:7 a.m.52 views

ALSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS8.9AI score0.82295EPSS
Exploits1References5
OSV
OSV
added 2022/05/10 8:7 a.m.47 views

RLSA-2022:1915 Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

7.5CVSS8.9AI score0.82295EPSS
Exploits1References7
AlmaLinux
AlmaLinux
added 2022/05/10 8:7 a.m.86 views

Moderate: httpd:2.4 security and bug fix update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request uri-path CVE-2021-36160 httpd:...

8.2CVSS9.3AI score0.82295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.67 views

CentOS 8 : httpd:2.4 (CESA-2022:1915)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1915 advisory. - httpd: Single zero byte stack overflow in modauthdigest CVE-2020-35452 - httpd: Request splitting via HTTP/2 method injection and modproxy...

8.2CVSS7.5AI score0.82295EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.35 views

Slackware: Security Advisory (SSA:2021-259-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.99999EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.55 views

EulerOS Virtualization 2.10.1 : httpd (EulerOS-SA-2022-1373)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

9.8CVSS7.9AI score0.99999EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.61 views

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2022-1399)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier...

9.8CVSS7.9AI score0.99999EPSS
Exploits5References5
OpenVAS
OpenVAS
added 2022/04/13 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2022-1373)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99999EPSS
Exploits5References4
Rows per page
Query Builder