3 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-27587
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP path request matcher is intended to be case-insensitive,...
CVE-2026-27587
Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP path request matcher is intended to be case-insensitive, but when the match pattern contains percent-escape sequences %xx it compares against the request's escaped path without lowercasing. An...
CVE-2026-27587
creationtimestamp| type| source ---|---|--- 2026-02-23 04:24:08+00:00| published-proof-of-concept| https://github.com/caddyserver/caddy/security/advisories/GHSA-g7pc-pc7g-h8jh 2026-02-25 03:10:19+00:00| seen| https://gist.github.com/alon710/ab126639375f6dbaf22c192fff07799b 2026-02-25...