CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2020/03/06 12:0 a.m.•112 views

CentOS 7 : http-parser (RHSA-2020:0703)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0703 advisory. - HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed CVE-2019-15605 Note that Nessus has not...

9.8CVSS8.1AI score0.32252EPSS

Oracle linux•added 2020/03/06 12:0 a.m.•76 views

http-parser security update

2.8.0-5.2 - Do not break ABI with CVE-2019-15605 fix 2.8.0-5.1 - Resolves: CVE-2019-15605 http-parser: nodejs: HTTP request smuggling using malformed Transfer-Encoding header...

9.8CVSS9.8AI score0.32252EPSS

OpenVAS•added 2020/03/05 12:0 a.m.•37 views

CentOS: Security Advisory for http-parser (CESA-2020:0703)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9AI score0.32252EPSS

Cent OS•added 2020/03/04 9:38 p.m.•232 views

http security update

CentOS Errata and Security Advisory CESA-2020:0703 An update for http-parser is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

RedHat Linux•added 2020/03/04 5:30 p.m.•37 views

Exploits0References7

Important: Red Hat Security Advisory: http-parser security update

An update for http-parser is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

RedHat Linux•added 2020/03/04 5:18 p.m.•41 views

Important: Red Hat Security Advisory: http-parser security update

An update for http-parser is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RedHat Linux•added 2020/03/04 1:2 p.m.•79 views

Important: Red Hat Security Advisory: http-parser security update

An update for http-parser is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

Tenable Nessus•added 2020/02/24 12:0 a.m.•14 views

Fedora 30 : 1:nodejs / http-parser (2020-830d8a1a92)

Update to 10.19.0 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...

5.5AI score

Exploits0References1

Fedora•added 2020/02/23 1:9 a.m.•9 views

[SECURITY] Fedora 30 Update: http-parser-2.9.3-1.fc30

This is a parser for HTTP messages written in C. It parses both requests and responses. The parser is designed to be used in performance HTTP applicatio ns. It does not make any syscalls nor allocations, it does not buffer data, it can be interrupted at anytime. Depending on your architecture, it...

0.8AI score

OpenVAS•added 2020/02/23 12:0 a.m.•12 views

Fedora: Security Advisory for http-parser (FEDORA-2020-830d8a1a92)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

OpenVAS•added 2020/01/23 12:0 a.m.•55 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2017-1085)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.4168EPSS

Exploits4References2

OpenVAS•added 2020/01/23 12:0 a.m.•30 views

Huawei EulerOS: Security Advisory for http-parser (EulerOS-SA-2019-2238)

7.5CVSS7AI score0.05572EPSS

OpenVAS•added 2020/01/23 12:0 a.m.•24 views

Huawei EulerOS: Security Advisory for http-parser (EulerOS-SA-2019-2158)

7.5CVSS7AI score0.05572EPSS

Tenable Nessus•added 2019/12/31 12:0 a.m.•27 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : http-parser Multiple Vulnerabilities (NS-SA-2019-0257)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has http-parser packages installed that are affected by multiple vulnerabilities: - The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to b...

7.5CVSS7.1AI score0.05572EPSS

Exploits0References3

Oracle linux•added 2019/11/14 12:0 a.m.•30 views

http-parser security and bug fix update

2.8.0-5 - Resolves: rhbz1686488: 'make test' fails with stringop-overflow error 2.8.0-4 - Resolves: rhbz1666382: CVE-2018-12121 http-parser: nodejs: Denial of Service with large HTTP headers rhel-8 2.8.0-3 - spec: make the check phase conditional...

7.5CVSS1AI score0.05572EPSS