Lucene search
K

11652 matches found

Debian CVE
Debian CVE
added 2022/10/18 12:0 a.m.29 views

CVE-2022-21628

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Lightweight HTTP Server. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0...

5.3CVSS5.3AI score0.02038EPSS
Exploits0
Cvelist
Cvelist
added 2022/10/18 12:0 a.m.33 views

CVE-2022-21628

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Lightweight HTTP Server. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0...

5.3CVSS5.1AI score0.02038EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2022/10/17 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:3593-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8.3AI score0.0199EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2022/10/14 11:46 a.m.295 views

Exploit for Cross-site Scripting in Helpsystems Cobalt_Strike

CVE-2022-39197 RCE POC Usage - Prepare Payload 1...

6.1CVSS6.5AI score0.46446EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/10/14 12:0 a.m.40 views

SUSE SLES15 / openSUSE 15 Security Update : rubygem-puma (SUSE-SU-2022:3571-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3571-1 advisory. Updated to version 4.3.12: - CVE-2022-24790: Fixed HTTP request smuggling if proxy is not RFC7230 compliant bsc1197818. Tenable has...

9.1CVSS6.7AI score0.0214EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/14 12:0 a.m.39 views

Amazon Linux 2022 : curl, curl-minimal, libcurl (ALAS2022-2022-145)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-145 advisory. A vulnerability was found in curl. This issue occurs because a malicious server can serve excessive amounts of Set-Cookie: headers in an HTTP response to curl, which stores all of them. This fl...

9.8CVSS6.4AI score0.3197EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2022/10/11 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2022:3553-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8.3AI score0.0199EPSS
Exploits0References4
OSV
OSV
added 2022/10/10 11:34 a.m.8 views

SUSE-SU-2022:3553-1 Security update for python

This update for python fixes the following issues: - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with // bsc1202624...

7.4CVSS7.5AI score0.0199EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/10/10 12:0 a.m.50 views

EulerOS Virtualization 3.0.6.0 : httpd (EulerOS-SA-2022-2564)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for...

9.8CVSS8.1AI score0.97108EPSS
Exploits6References14
OSV
OSV
added 2022/10/06 6:15 p.m.4 views

CVE-2021-40556

A stack overflow vulnerability exists in the httpd service in ASUS RT-AX56U Router Version 3.0.0.4.386.44266. This vulnerability is caused by the strcat function called by "caupload" input handle function allowing the user to enter 0xFFFF bytes into the stack. This vulnerability allows an attacke...

8.8CVSS5.9AI score0.01344EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/05 7:6 p.m.58 views

Security Bulletin: IBM HTTP Server is vulnerable to arbitrary code execution due to Expat (CVE-2022-40674)

Summary IBM HTTP Server used by IBM WebSphere Application Server is vulnerable to arbitrary code execution due to Expat. The Expat library is used by IBM HTTP Server's WebDAV moddav support, but may also be used by third-party Apache HTTP Server modules if they have been loaded into the server by...

8.1CVSS8.8AI score0.01659EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.53 views

SUSE SLED15: libpython2_7-1_0 / libpython2_7-1_0-32bit / python / python-32bit / etc (SUSE-SU-2022:3512-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3512-1 advisory. - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with...

7.4CVSS6.9AI score0.0199EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/10/05 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2022:3512-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8AI score0.0199EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/10/03 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2022:3483-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8.3AI score0.0199EPSS
Exploits0References4
Debian
Debian
added 2022/09/30 3:57 p.m.30 views

[SECURITY] [DLA 3127-1] libhttp-daemon-perl security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3127-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz September 30, 2022 https://wiki.debian.org/LTS -...

7.3CVSS6.9AI score0.02108EPSS
Exploits1
OSV
OSV
added 2022/09/30 2:55 p.m.2 views

SUSE-SU-2022:3483-1 Security update for python36

This update for python36 fixes the following issues: - CVE-2021-28861: Fixed an open redirection vulnerability in the HTTP server when an URI path starts with // bsc1202624...

7.4CVSS7.5AI score0.0199EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.6 views

httpd: Out-of-bounds write in ap_escape_quotes() via malicious input

An out-of-bounds write in function apescapequotes of httpd allows an unauthenticated remote attacker to crash the server or potentially execute code on the system with the privileges of the httpd user, by providing malicious input to the function...

9.8CVSS7.4AI score0.36339EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.3 views

httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path

An out-of-bounds read in modproxyuwsgi of httpd allows a remote unauthenticated attacker to crash the service through a crafted request. The highest threat from this vulnerability is to system availability...

7.5CVSS7.2AI score0.62887EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.0 views

httpd: mod_sed: Read/write beyond bounds

An out-of-bounds read/write vulnerability was found in the modsed module of httpd. This flaw allows an attacker to overwrite the memory of an httpd instance that is using modsed with data provided by the attacker...

9.8CVSS7.1AI score0.50401EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.88 views

Moderate: Red Hat Security Advisory: httpd24-httpd security and bug fix update

An update for httpd24-httpd is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS7.2AI score0.99999EPSS
Exploits8References17
Rows per page
Query Builder