Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.12 views

TencentOS Server 4: httpd (TSSA-2024:0664)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0664 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.3AI score0.70595EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.27 views

Azure Linux 3.0 Security Update: httpd / mod_http2 (CVE-2023-43622)

The version of httpd / modhttp2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-43622 advisory. - An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block...

7.5CVSS7.3AI score0.70595EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.11 views

CBL Mariner 2.0 Security Update: httpd / mod_http2 (CVE-2023-43622)

The version of httpd / modhttp2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-43622 advisory. - An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block...

7.5CVSS7.3AI score0.70595EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/05/15 9:13 p.m.7 views

CVE-2023-43622 affecting package mod_http2 for versions less than 2.0.29-3

CVE-2023-43622 affecting package modhttp2 for versions less than 2.0.29-3. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.70595EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.49 views

Oracle Linux 9 : mod_http2 (ELSA-2024-2368)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2368 advisory. 2.0.26-1 - Resolves: RHEL-14691 - modhttp2 rebase to 2.0.26 Tenable has extracted the preceding description block directly from the Oracle Linux securi...

7.5CVSS7.5AI score0.70595EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/04/30 9:42 a.m.62 views

Moderate: Red Hat Security Advisory: mod_http2 security update

An update for modhttp2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7.1AI score0.99999EPSS
Exploits20References5
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.53 views

Moderate: mod_http2 security update

The modhttp2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modhttp2: DoS in HTTP/2 with initial window size 0 CVE-2023-43622 modhttp2: reset requests exhaust memory incomplete fix of CVE-2023-44487 CVE-2023-45802 For mo...

7.5CVSS8.7AI score0.99999EPSS
Exploits20References6
OSV
OSV
added 2024/04/30 12:0 a.m.63 views

ALSA-2024:2368 Moderate: mod_http2 security update

The modhttp2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modhttp2: DoS in HTTP/2 with initial window size 0 CVE-2023-43622 modhttp2: reset requests exhaust memory incomplete fix of CVE-2023-44487 CVE-2023-45802 For mo...

7.5CVSS8.6AI score0.99999EPSS
Exploits20References6
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.49 views

RHEL 9 : mod_http2 (RHSA-2024:2368)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2368 advisory. The modhttp2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd:...

7.5CVSS7.5AI score0.99999EPSS
Exploits20References9
Debian
Debian
added 2024/04/16 6:31 p.m.59 views

[SECURITY] [DSA 5662-1] apache2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5662-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 16, 2024 https://www.debian.org/security/faq -...

7.5CVSS8.4AI score0.91327EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2024/03/19 12:0 a.m.33 views

FreeBSD : www/varnish7 -- Denial of Service (05b7180b-e571-11ee-a1c0-0050569f0b83)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 05b7180b-e571-11ee-a1c0-0050569f0b83 advisory. - An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling...

7.5CVSS7.3AI score0.70595EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/12/19 12:0 a.m.42 views

Tenable SecurityCenter Multiple Vulnerabilities (TNS-2023-44)

According to its self-reported version, the Tenable SecurityCenter running on the remote host is . It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-44 advisory. - Security Center leverages third-party software to help provide underlying functionality. One of th...

7.5CVSS7.4AI score0.70595EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2023/11/22 2:55 p.m.84 views

USN-6506-1: Apache HTTP Server vulnerabilities

David Shoon discovered that the Apache HTTP Server modmacro module incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause the server to crash, resulting in a denial of service. CVE-2023-31122 Prof. Sven Dietrich, Isa Jafarov, Prof. Heejo Lee, and...

7.5CVSS7.5AI score0.70595EPSS
Exploits1
OSV
OSV
added 2023/11/22 2:55 p.m.4 views

USN-6506-1 apache2 vulnerabilities

David Shoon discovered that the Apache HTTP Server modmacro module incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause the server to crash, resulting in a denial of service. CVE-2023-31122 Prof. Sven Dietrich, Isa Jafarov, Prof. Heejo Lee, and...

7.5CVSS6.9AI score0.70595EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.63 views

Tenable Security Center 5.23.1 / 6.0.0 / 6.1.0 / 6.1.1 / 6.2.0 Multiple Vulnerabilities (TNS-2023-42)

According to its self-reported version, the Tenable Security Center running on the remote host is affected by multiple vulnerabilities as referenced in the TNS-2023-42 advisory. - Security Center leverages third-party software to help provide underlying functionality. Several of the third-party...

7.5CVSS7.4AI score0.70595EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.58 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Apache HTTP Server vulnerabilities (USN-6506-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6506-1 advisory. David Shoon discovered that the Apache HTTP Server modmacro module incorrectly handled certain memory operations. A remote...

7.5CVSS7.5AI score0.70595EPSS
Exploits1References4
CBLMariner
CBLMariner
added 2023/11/08 2:7 a.m.19 views

CVE-2023-43622 affecting package httpd for versions less than 2.4.58-1

CVE-2023-43622 affecting package httpd for versions less than 2.4.58-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.70595EPSS
Exploits0
Citrix
Citrix
added 2023/11/08 12:0 a.m.17 views

Apache vulnerability CVE-2023-43622 CVE-2023-45802 CVE-2023-31122 in License Server 11.17.2.0 44000

Apache 2.4.57 contains vulnerabilities and is used in the License Server version 11.17.2.0 build 44000. Security scans may raise the following CVEs: CVE-2023-43622-https://vulners.com/cve/CVE-2023-43622Affects HTTP/2 CVE-2023-45802-https://vulners.com/cve/CVE-2023-45802Affetcs HTTP/2...

7.5CVSS7.1AI score0.70595EPSS
Exploits1
Amazon
Amazon
added 2023/11/03 12:0 a.m.60 views

Important: httpd24

Issue Overview: Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57. CVE-2023-31122 A flaw was found in httpd. This flaw allows an attacker opening an HTTP/2 connection with an initial window size of 0 to block handling of that...

7.5CVSS6.8AI score0.70595EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.97 views

Amazon Linux 2 : httpd (ALAS-2023-2322)

The version of httpd installed on the remote host is prior to 2.4.58-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2322 advisory. Out-of-bounds Read vulnerability in modmacro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57...

7.5CVSS7AI score0.70595EPSS
Exploits1References8
Rows per page
Query Builder