CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-4008

Malware in sbrugna...

5.3CVSS5.9AI score0.00659EPSS

Exploits0References4

RedhatCVE•added 2025/07/10 11:21 p.m.•2 views

CVE-2024-56468

IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 could allow a remote user to cause a denial of service by sending an invalid HTTP request to the log reading service...

7.5CVSS7.1AI score0.0033EPSS

Exploits0References1

Citrix•added 2025/06/03 12:0 a.m.•11 views

NetScaler-13.1-Warning "is_whitelisted_request - Dropping invalid http request" in ns.log

You may see warning message like below in ns.log and would like to know why this log exists. Aug 12 16:50:25 X.X.X.X 08/12/2024:07:50:25 GMT XXX 0-PPE-2 : default SSLVPN Message 918225 0 :"iswhitelistedrequest - Dropping invalid http request:|/v1|"...

9.8CVSS7AI score0.94442EPSS

Exploits48

Redos•added 2024/04/23 12:0 a.m.•39 views

ROS-20240423-01

Apache HTTP Server vulnerability is related to blocking HTTP/2 connection processing if it was opened with 0 initial sliding window size. was opened with the initial sliding window size set to 0. Exploitation of the vulnerability could Allow an attacker acting remotely to cause a denial of servic...

7.5CVSS8.8AI score0.944EPSS

Exploits19

AlpineLinux•added 2023/04/27 3:15 p.m.•17 views

CVE-2023-30847

H2O is an HTTP server. In versions 2.3.0-beta2 and prior, when the reverse proxy handler tries to processes a certain type of invalid HTTP request, it tries to build an upstream URL by reading from uninitialized pointer. This behavior can lead to crashes or leak of information to back end HTTP...

6.4CVSS6.7AI score0.0056EPSS

Exploits0

Prion•added 2023/04/27 3:15 p.m.•19 views

Design/Logic Flaw

6.4CVSS7.9AI score0.0056EPSS

Exploits0References3Affected Software1

NVD•added 2005/04/14 4:0 a.m.•11 views

CVE-2005-0081

MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service crash via an HTTP request with invalid headers...

5CVSS6.6AI score0.00655EPSS

Exploits0References1

Cvelist•added 2005/02/26 5:0 a.m.•12 views

CVE-2004-1720

The 1 address.html and possibly 2 calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation path. NOTE: it is unclear whether the calendar.html is an exposure, since the path is leaked in web log...

6.6AI score0.09092EPSS

Exploits1References7

securityvulns•added 2004/05/11 12:0 a.m.•29 views

McAfee ePolicy Orchestrator unauthorized access

Invalid HTTP POST request allows to upload files on server...

1.1AI score

Exploits0References1Affected Software1

securityvulns•added 2003/10/15 12:0 a.m.•26 views

tomcat DoS

Invalid HTTP request causes service to hang...

0.7AI score

Exploits0References1Affected Software1

Tenable Nessus•added 2002/11/27 12:0 a.m.•36 views

Savant Web Server Malformed Content-Length DoS

The Savant web server on the remote host crashes when it receives an invalid GET HTTP request with a negative Content-Length field. A remote attacker can leverage this issue to disable the affected service. C Tenable Network Security, Inc. References: Date: Fri, 13 Sep 2002 19:55:05 +0000 From...

5CVSS5.6AI score0.04186EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by