Lucene search
K

21 matches found

OSV
OSV
added 2023/08/31 12:16 p.m.4 views

BELL-CVE-2021-41524 CVE-2021-41524 does not affect BellSoft software

Bulletin has no description...

7.5CVSS7.3AI score0.24982EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.66 views

K56331254: Apache HTTP server vulnerability CVE-2021-41524

Security Advisory Description While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No...

7.5CVSS7.7AI score0.24982EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/10/26 8:15 p.m.70 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links...

9.8CVSS7AI score0.82295EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/10/26 8:5 p.m.73 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

9.8CVSS7.6AI score0.82295EPSS
Exploits5References22
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.42 views

Slackware: Security Advisory (SSA:2021-278-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.99992EPSS
Exploits151References4
OpenVAS
OpenVAS
added 2021/10/30 12:0 a.m.35 views

Fedora: Security Advisory for httpd (FEDORA-2021-f94985afca)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/17 12:0 a.m.117 views

Amazon Linux AMI : httpd24 (ALAS-2021-1543)

The version of httpd24 installed on the remote host is prior to 2.4.51-1.94. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1543 advisory. A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

9.8CVSS8.7AI score0.99999EPSS
Exploits182References17
Tenable Nessus
Tenable Nessus
added 2021/10/16 12:0 a.m.157 views

Amazon Linux 2 : httpd (ALAS-2021-1716)

The version of httpd installed on the remote host is prior to 2.4.51-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1716 advisory. A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

9.8CVSS8.7AI score0.99999EPSS
Exploits182References17
CBLMariner
CBLMariner
added 2021/10/15 4:46 a.m.34 views

CVE-2021-41524 affecting package httpd 2.4.49-1

CVE-2021-41524 affecting package httpd 2.4.49-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.8AI score0.24982EPSS
Exploits0
ALT Linux
ALT Linux
added 2021/10/07 12:0 a.m.69 views

Security fix for the ALT Linux 9 package apache2 version 1:2.4.50-alt1

Oct. 7, 2021 Anton Farygin 1:2.4.50-alt1 - 2.4.50 Fixes: CVE-2021-41773, CVE-2021-41524...

5CVSS7.9AI score0.99992EPSS
Exploits151
Mageia
Mageia
added 2021/10/06 2:38 p.m.81 views

Updated apache packages fix security vulnerabilities

The updated packages fix a security vulnerabilities: While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in...

9.8CVSS0.6AI score0.99992EPSS
Exploits151References4
Malwarebytes
Malwarebytes
added 2021/10/06 2:23 p.m.127 views

[Updated, again] Apache fixes zero-day vulnerability in HTTP Server

The Apache HTTP Server 2.4.49 is vulnerable to a flaw that allows attackers to use a path traversal attack to map URLs to files outside the expected document root. If files outside of the document root are not protected by "require all denied" these requests can succeed. This issue is known to be...

5CVSS9.6AI score0.99992EPSS
Exploits176
Circl
Circl
added 2021/10/06 11:23 a.m.5 views

CVE-2021-41524

creationtimestamp| type| source ---|---|--- 2021-10-06 11:23:27+00:00| seen| https://t.me/truesecator/2184...

7.5CVSS7.9AI score0.24982EPSS
Exploits0References1
hivepro
hivepro
added 2021/10/06 8:57 a.m.82 views

Multiple vulnerabilities have been discovered in the Apache HTTP Server

THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. There is a zero-day vulnerability CVE-2021-41773 and a DoS vulnerability CVE-2021-41524 in Apache HTTP servers. After a publicly disclosed exploit, the zero-day vulnerability has been actively exploited in the wild. The Hiv...

5CVSS0.3AI score0.99992EPSS
Exploits151
Tenable Nessus
Tenable Nessus
added 2021/10/06 12:0 a.m.67 views

FreeBSD : Apache httpd -- Multiple vulnerabilities (25b78bdd-25b8-11ec-a341-d4c9ef517024)

The Apache http server project reports : - moderate: NULL pointer dereference in h2 fuzzing CVE-2021-41524 - important: Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 CVE-2021-41773 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

9.8CVSS8.2AI score0.99992EPSS
Exploits151References4
RedhatCVE
RedhatCVE
added 2021/10/05 5:8 p.m.51 views

CVE-2021-41524

While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No exploit is known to the project...

7.5CVSS2.4AI score0.24982EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/10/05 8:40 a.m.32 views

CVE-2021-41524 null pointer dereference in h2 fuzzing

While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No exploit is known to the project...

7.6AI score0.24982EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/10/05 12:0 a.m.304 views

Apache 2.4.49 < 2.4.50 Multiple Vulnerabilities

The version of Apache httpd installed on the remote host is 2.4.49. It is, therefore, affected by multiple vulnerabilities as referenced in the 2.4.50 advisory. - While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external...

9.8CVSS8.2AI score0.99992EPSS
Exploits151References3
FreeBSD
FreeBSD
added 2021/10/05 12:0 a.m.102 views

Apache httpd -- Multiple vulnerabilities

The Apache http server project reports: moderate: null pointer dereference in h2 fuzzing CVE-2021-41524 important: Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 CVE-2021-41773...

9.8CVSS1.4AI score0.99992EPSS
Exploits151References1
OpenVAS
OpenVAS
added 2021/10/05 12:0 a.m.45 views

Apache HTTP Server 2.4.49 Multiple Vulnerabilities - Windows

Apache HTTP Server is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

9.8CVSS8.2AI score0.99992EPSS
Exploits151References3
Rows per page
Query Builder