CVE-2022-27016

There is a stack overflow vulnerability in the SetStaticRouteCfg function in the httpd service of Tenda AC9 15.03.2.21cn...

CVE-2022-27016

CVE-2022-27016 affects Tenda AC9, specifically the httpd service with firmware 15.03.2.21_cn. The vulnerability is a stack overflow in SetStaticRouteCfg(), as described across multiple sources (CNVD/CNNVD, NVD, Red Hat, CVE listing). Exploitation could allow an attacker to obtain a root shell via...

CVE-2022-23943 affecting package httpd 2.4.52-1

CVE-2022-23943 affecting package httpd 2.4.52-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-22720 affecting package httpd 2.4.52-1

CVE-2022-22720 affecting package httpd 2.4.52-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-22719 affecting package httpd 2.4.52-1

CVE-2022-22719 affecting package httpd 2.4.52-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-22721 affecting package httpd 2.4.52-1

CVE-2022-22721 affecting package httpd 2.4.52-1. An upgraded version of the package is available that resolves this issue...

Tenda AC9 缓冲区错误漏洞

Tenda AC9 is a wireless router from Tenda, a Chinese company. Tenda AC9 has a security vulnerability that originates from a stack overflow in the SetSysTimeCfg function of the httpd service. An attacker could exploit the vulnerability to cause a server-side stack overflow...

The vulnerability of httpd-demon in NETGEAR’s integrated router software—NETGEAR R6400, NETGEAR R6400v2, NETGEAR R6700v3, NETGEAR R6900P, NETGEAR R7000, NETGEAR R7000P, NETGEAR R8500, NETGEAR RAX15, NETGEAR RAX20, NETGEAR RAX35v2, NETGEAR RAX38v2, NETGEAR RAX40v2, NETGEAR RAX42, NETGEAR RAX43, NETGEAR RAX45, NETGEAR RAX48, NETGEAR RAX50, NETGEAR RAX50S, NETGEAR RS400, NETGEAR R7100LG, NETGEAR LAX20, NETGEAR CAX80, NETGEAR MR80, NETGEAR MS80—allows a hacker to bypass authentication.

The vulnerability of httpd-demon in NETGEAR’s integrated router software—NETGEAR R6400, NETGEAR R6400v2, NETGEAR R6700v3, NETGEAR R6900P, NETGEAR R7000, NETGEAR R7000P, NETGEAR R8500, NETGEAR RAX15, NETGEAR RAX20, NETGEAR RAX35v2, NETGEAR RAX38v2, NETGEAR RAX40v2, NETGEAR RAX42, NETGEAR RAX43,...

RHEL 6 : httpd (RHSA-2022:1173)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:1173 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Errors encountered during...

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

Directory traversal

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

CVE-2022-28380

CVE-2022-28380 affects the rc-httpd component in plan9front (9front fork) up to 2022-03-31. The issue enables directory traversal via a crafted path containing ..%2f when serve-static is used, exposing potential access to restricted files. The connected sources confirm the vulnerable component an...

CVE-2022-28380

The rc-httpd component through 2022-03-31 for 9front Plan 9 fork allows ..%2f directory traversal if serve-static is used...

RHEL 7 : httpd (RHSA-2022:1136)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1136 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible...

RHEL 7 : httpd (RHSA-2022:1137)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1137 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible...

RHEL 7 : httpd (RHSA-2022:1139)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1139 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible...

RHEL 7 : httpd (RHSA-2022:1138)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1138 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible...

Important: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact...