Critical Photon OS Security Update - PHSA-2023-3.0-0522

Updates of 'httpd', 'vim', 'gnupg' packages of Photon OS have been released...

CLSA-2023-1675111939 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible HTTP request smuggling...

CLSA-2023-1675111708 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible HTTP request smuggling...

CVE-2022-38451

A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-38451

CVE-2022-38451 is a directory traversal vulnerability in FreshTomato 2022.5 (and related firmware derived from it, e.g., Siretta QUARTZ-GOLD). TALOS-2022-1642 documents a flaw in FreshTomato’s httpd update.cgi: the wo_update path builds /var/notice/ from an unsanitized exec/arg parameter, leading...

FreshTomato 路径遍历漏洞

FreshTomato is a Linux-based open source firmware from FreshTomato Open Source. The firmware provides a variety of features for Broadcom-based routers. A security vulnerability exists in FreshTomato version 2022.5, which stems from its httpd update.cgi function that allows an attacker to cause...

PT-2023-14122 · Unknown · Freshtomato

Name of the Vulnerable Software and Affected Versions: FreshTomato version 2022.5 Description: A specially crafted HTTP request can lead to arbitrary command execution due to an OS command injection vulnerability in the httpd logs/view.cgi functionality. This allows an attacker to send an HTTP...

EulerOS Virtualization 3.0.2.2 : httpd (EulerOS-SA-2023-1260)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is...

Fedora: Security Advisory for httpd (FEDORA-2023-f6ff3f85eb)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Ubuntu: Security Advisory (USN-4848-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-40220

An OS command injection vulnerability exists in the httpd txt/restore.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-38715

A leftover debug code vulnerability exists in the httpd shell.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-38715

A leftover debug code vulnerability exists in the httpd shell.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...

Directory traversal

A directory traversal vulnerability exists in the httpd delfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-40969

CVE-2022-40969 (Siretta QUARTZ-GOLD) is a OS command injection vulnerability in the httpd delfile.cgi file-management endpoint. Talos reports that the delfile.cgi handler accepts a parameter named _filename, appends it to a base folder path, and then executes rm -rf / via system(), with the filen...

CVE-2022-38459

A stack-based buffer overflow vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-38715

TALOS-2022-1610 confirms a leftover debug code vulnerability in Siretta QUARTZ-GOLD G5.0.1.5-210720-141020: an authenticated HTTP request to httpd shell.cgi can trigger arbitrary command execution due to a debug API that was not disabled in the AdvancedTomato-based web server. The CVE (CVE-2022-3...

CVE-2022-40220

Cisco Talos details CVE-2022-40220: OS command injection in Siretta QUARTZ-GOLD G5.0.1.5-210720-141020 via httpd txt/restore.cgi. The vulnerability arises when nvram key/value lines from the request body are parsed and fed to system() without validation, enabling arbitrary command execution. TALO...

PT-2023-13471 · Siretta · Siretta Quartz-Gold

Name of the Vulnerable Software and Affected Versions: Siretta QUARTZ-GOLD version G5.0.1.5-210720-141020 Description: A stack-based buffer overflow issue exists in the httpd delfile.cgi functionality. This can be triggered by a specially-crafted HTTP request, potentially leading to remote code...

PT-2023-13586 · Siretta · Siretta Quartz-Gold

Name of the Vulnerable Software and Affected Versions: Siretta QUARTZ-GOLD version G5.0.1.5-210720-141020 Description: A directory traversal issue exists in the httpd downfile.cgi functionality, allowing an attacker to send a specially-crafted HTTP request to read arbitrary files. Recommendations...