Lucene search
K

7 matches found

OSV
OSV
added 2026/06/15 8:46 p.m.5 views

GHSA-HVCG-QMG6-JM4C Netty: HttpObjectDecoder skips arbitrary initial control characters when only initial CRLF characters are permitted

Summary Before reading the first request-line, HttpObjectDecoder skips every byte for which Character.isISOControlb is true 0x00–0x1F and 0x7F as well as all whitespace. RFC 9112 §2.2 only asks servers to ignore empty CRLF lines preceding the request-line — a carefully scoped robustness allowance...

5.3CVSS5.4AI score0.00232EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-7816

Malware in sbrugna...

5.3CVSS5.3AI score0.01355EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 8:38 a.m.7 views

CVE-2019-17420

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...

5.3CVSS6.8AI score0.01355EPSS
Exploits0References1
Prion
Prion
added 2019/10/10 1:6 a.m.17 views

Code injection

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...

5CVSS5.2AI score0.01355EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2019/10/10 1:6 a.m.40 views

CVE-2019-17420

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...

5.3CVSS6.1AI score0.01355EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.149 views

Virtuozzo 6 : httpd / httpd-devel / httpd-manual / httpd-tools / etc (VZLSA-2017-1721)

An update for httpd is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.4AI score0.13252EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/04/14 12:0 a.m.112 views

CentOS 7 : httpd (CESA-2017:0906)

An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.7AI score0.49024EPSS
Exploits4References5
Rows per page
Query Builder