CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2025/07/12 12:0 a.m.•3 views

PT-2025-29303 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The Apache HTTP Server is susceptible to an authentication bypass. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

6.5AI score

Positive Technologies•added 2025/07/12 12:0 a.m.•4 views

PT-2025-29300 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The Apache HTTP Server contains an issue due to unvalidated user input. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

6.2AI score

SUSE CVE•added 2025/07/11 11:21 p.m.•8 views

SUSE CVE-2025-53020

Late Release of Memory after Effective Lifetime vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: from 2.4.17 up to 2.4.63. Users are recommended to upgrade to version 2.4.64, which fixes the issue...

5.9CVSS7AI score0.03322EPSS

Exploits1References10

OpenVAS•added 2025/07/11 12:0 a.m.•5 views

Apache HTTP Server < 2.4.64 Multiple Vulnerabilities - Linux

Apache HTTP Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver"; if...

7.5CVSS7.3AI score0.00774EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•12 views

Apache HTTP Server 2.4.17 < 2.4.64 DoS Vulnerability - Windows

Apache HTTP Server is prone to a denial of service DoS vulnerability via HTTP/2. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.2AI score0.03322EPSS

OSV•added 2025/07/11 12:0 a.m.•4 views

UBUNTU-CVE-2024-43394

Server-Side Request Forgery SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via modrewrite or apache expressions that pass unvalidated request input. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.63. Note: The Apache HTTP Server...

7.5CVSS5.8AI score0.01098EPSS

Exploits0References4

OpenVAS•added 2025/07/11 12:0 a.m.•8 views

Apache HTTP Server < 2.4.64 Multiple Vulnerabilities - Windows

7.5CVSS7.3AI score0.01098EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•7 views

Apache HTTP Server 2.4.35 < 2.4.64 Access Control Bypass Vulnerability - Linux

Apache HTTP Server is prone to an access control bypass vulnerability in modssl. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.1CVSS7.2AI score0.0097EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•3 views

Apache HTTP Server 2.4.26 < 2.4.64 DoS Vulnerability - Linux

Apache HTTP Server is prone to a denial of service DoS vulnerability in modproxyhttp2. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.1AI score0.01149EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•5 views

Apache HTTP Server 2.4.26 < 2.4.64 DoS Vulnerability - Windows

7.5CVSS7.1AI score0.01149EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•9 views

Apache HTTP Server 2.4.35 < 2.4.64 Access Control Bypass Vulnerability - Windows

9.1CVSS7.2AI score0.0097EPSS

OpenVAS•added 2025/07/11 12:0 a.m.•10 views

Apache HTTP Server 2.4.17 < 2.4.64 DoS Vulnerability - Linux

7.5CVSS7.2AI score0.03322EPSS

Positive Technologies•added 2025/07/11 12:0 a.m.•1 views

PT-2025-29205 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The reported issue has been rejected as not being used. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

6.3AI score

Positive Technologies•added 2025/07/11 12:0 a.m.•2 views

PT-2025-29204 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The Apache HTTP Server is susceptible to a Cross-Site Request Forgery CSRF issue. Recommendations: At the moment, there is no information about a newer version that contains a fi...

6.5AI score

Positive Technologies•added 2025/07/11 12:0 a.m.•2 views

PT-2025-29201

Name of the Vulnerable Software and Affected Versions Apache HTTP Server affected versions not specified Description The communication protocol used between the client and server has a flaw that could be leveraged to execute a man-in-the-middle attack. Recommendations At the moment, there is no...

6.8CVSS6.2AI score0.00346EPSS

Exploits0References10

Positive Technologies•added 2025/07/11 12:0 a.m.•12 views

PT-2025-29208 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Description: The reported issue has been rejected as not used. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

6.3AI score