CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5772 matches found

OpenVAS•added 2025/10/13 12:0 a.m.•10 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2025-2228)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.7AI score0.0097EPSS

Exploits1References2

OpenVAS•added 2025/10/13 12:0 a.m.•6 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2025-2196)

9.1CVSS6.7AI score0.0097EPSS

Exploits1References2

Tenable Nessus•added 2025/10/11 12:0 a.m.•8 views

EulerOS 2.0 SP11 : httpd (EulerOS-SA-2025-2228)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In some modssl configurations on Apache HTTP Server versions through to 2.4.63, an HTTP desynchronisation attack allows a man-in-the-middle attacke...

9.1CVSS7.5AI score0.03914EPSS

Exploits1References6

RedhatCVE•added 2025/10/10 4:20 p.m.•12 views

CVE-2025-59975

An Uncontrolled Resource Consumption vulnerability in the HTTP daemon httpd of Juniper Networks Junos Space allows an unauthenticated network-based attacker flooding the device with inbound API calls to consume all resources on the system, leading to a Denial of Service DoS. After continuously...

8.7CVSS6.9AI score0.00379EPSS

Exploits0References1

OSV•added 2025/10/10 5:50 a.m.•4 views

RLSA-2025:14983 Moderate: mod_http2 security update

The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: modproxyhttp2: untrusted input from a client causes an assertion to fail in the Apache modproxyhttp2 module CVE-2025-49630 For more details about the security...

7.5CVSS6.9AI score0.01149EPSS

Exploits0References2

OSV•added 2025/10/10 5:50 a.m.•10 views

RLSA-2025:15023 Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption...

7.5CVSS6.9AI score0.0097EPSS

Exploits1References4

Rockylinux•added 2025/10/10 5:50 a.m.•8 views

httpd security update

An update is available for httpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful, efficient, and...

9.1CVSS6.9AI score0.0097EPSS

Exploits1

Tenable Nessus•added 2025/10/10 12:0 a.m.•8 views

RockyLinux 9 : httpd (RLSA-2025:15023)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:15023 advisory. httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TL...

9.1CVSS7.7AI score0.0097EPSS

Exploits1References7

EUVD•added 2025/10/09 6:30 p.m.•11 views

EUVD-2025-33391

8.7CVSS6.5AI score0.00379EPSS

Exploits0References2

NVD•added 2025/10/09 4:15 p.m.•13 views

CVE-2025-59975

8.7CVSS0.00379EPSS

Exploits0References1

VulnCheck KEV•added 2025/10/09 12:0 a.m.•6 views

VulnCheck KEV: CVE-2020-27867

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Although authentication is required to exploit...

7.7CVSS6.1AI score0.02344EPSS

In wildExploits0References112

Tenable Nessus•added 2025/10/09 12:0 a.m.•7 views

AlmaLinux 10 : httpd (ALSA-2025:15095)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:15095 advisory. httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TL...

9.1CVSS7.7AI score0.0097EPSS

Exploits1References5