Lucene search
K

72 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.9 views

MiracleLinux 8 : httpd:2.4 (AXSA:2024-8622:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8622:01 advisory. httpd: Encoding problem in modproxy CVE-2024-38473 httpd: Substitution encoding issue in modrewrite CVE-2024-38474 httpd: Improper escaping of outpu...

9.8CVSS5.6AI score0.99957EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2026/01/12 12:0 a.m.9 views

Oracle Linux 7 : httpd (ELSA-2026-0075)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0075 advisory. - Fix CVE-2025-58098 Orabug: 38816066 - Fixed security update CVE-2024-47252 CVE-2025-49812 Orabug: 38378160 - Differentiate trusted sources Orabug:...

9.8CVSS7.7AI score0.99957EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.10 views

TencentOS Server 3: httpd:2.4 (TSSA-2024:0275)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0275 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.14 views

TencentOS Server 2: httpd (TSSA-2024:0380)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0380 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

9.8CVSS8.6AI score0.99957EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 4: httpd (TSSA-2024:0281)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0281 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.24 views

Alibaba Cloud Linux 3 : 0155: httpd:2.4 (ALINUX3-SA-2024:0155)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0155 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-38709: Faulty input validation in...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References7
GithubExploit
GithubExploit
added 2025/05/07 12:2 a.m.1162 views

Exploit for Improper Encoding or Escaping of Output in Apache Http_Server

CVE-2024-38475SonicBoomApacheURLTraversalPoC Author: a...

9.1CVSS8.5AI score0.99957EPSS
Exploits1
Information Security Automation
Information Security Automation
added 2025/05/06 3:12 p.m.32 views

About Remote Code Execution & Arbitrary File Reading – Apache HTTP Server (CVE-2024-38475) vulnerability

About Remote Code Execution & Arbitrary File Reading - Apache HTTP Server CVE-2024-38475 vulnerability. Improper escaping of output in modrewrite module leads to remote code execution or arbitrary file reading. Successful exploitation does not require authentication. Apache HTTP Server 2.4.60,...

9.1CVSS8.7AI score0.99957EPSS
Exploits1
HackRead
HackRead
added 2025/05/03 9:26 p.m.60 views

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices

watchTowr reveals active exploitation of SonicWall SMA 100 vulnerabilities CVE-2024-38475 & CVE-2023-44221 potentially leading to full system takeover…...

9.1CVSS9.7AI score0.99957EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.47 views

Security Bulletin: IBM Datapower Operations Dashboard could allow an attacker to map URLs to filesystem locations that are unreachable by any URL CVE-2024-38475

Summary Apache HTTP Server is used by the IBM Datapower Operations Dashboard implementation of network implementation Vulnerability Details CVEID:CVE-2024-38475 DESCRIPTION: Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to...

9.1CVSS6.7AI score0.99957EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.63 views

Security Bulletin: Vulnerability in Apache HTTP Server (CVE-2024-38475) affects Power HMC.

Summary The Apache HTTP Server library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2024-38475 DESCRIPTION: Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs ...

9.1CVSS6.8AI score0.99957EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2769)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2702)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2751)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.44 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2688)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/09 12:0 a.m.41 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2505)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2024/10/09 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2529)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/01 6:45 p.m.121 views

Security Bulletin: IBM HTTP Server (powered by Apache) for IBM i is vulnerable to a remote attacker causing a denial of service, executing arbitrary code, and mapping URLs to filesystem locations due to multiple vulnerabilities.

Summary IBM HTTP Server powered by Apache for IBM i is vulnerable to a remote attacker causing a denial of service due to NULL pointer dereference CVE-2024-38477, executing arbitrary code due to an encoding issue in modrewrite CVE-2024-38474, and improper escaping in modrewrite resulting in acces...

9.8CVSS10AI score0.99957EPSS
Exploits1Affected Software5
OpenVAS
OpenVAS
added 2024/09/19 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-6885-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.99957EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2024/09/13 12:0 a.m.48 views

httpd security update

2.4.6-99.0.3.1 - Opt-ins for unsafe prefixstat and %3f Orabug: 36904263CVE-2024-38474CVE-2024-38475 - modproxy: validate hostname Orabug: 36904263CVE-2024-38477...

9.8CVSS7.4AI score0.99957EPSS
Exploits1
Rows per page
Query Builder