Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: httpd (UTSA-2025-987461)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987461 advisory. A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. AddType and...

6.2CVSS7AI score0.04134EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-15691

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache uimaj prior to 2.10.2, Apache uimaj 3.0.0-xxx prior to 3.0.0-beta, Apache uima-as prior to 2.10.2, Apache uimaFIT prior to 2.4.0, Apache uimaDUCC prio...

6.5CVSS6.8AI score0.09021EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/07/07 11:53 p.m.8 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-38477: Fixed null pointer dereference in modproxy bsc1227270. CVE-2024-39573: Fixed source code disclosure with handlers configured via AddType bsc1227271. CVE-2024-39884: Fixed source code disclosure of local content bsc1227353...

7.5CVSS7.2AI score0.35447EPSS
Exploits3References18
SUSE CVE
SUSE CVE
added 2025/02/14 4:48 a.m.3 views

SUSE CVE-2024-39884

A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PH...

5.3CVSS6.5AI score0.00889EPSS
Exploits0References9
SUSE Linux
SUSE Linux
added 2024/11/01 3:6 p.m.4 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-40725: Fixed source code disclosure of local content bsc1228097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS5.9AI score0.04134EPSS
Exploits3References4
SUSE Linux
SUSE Linux
added 2024/10/23 3:33 p.m.6 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-40725: Fixed source code disclosure of local content bsc1228097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS7.2AI score0.04134EPSS
Exploits3References4
SUSE Linux
SUSE Linux
added 2024/10/21 1:58 p.m.6 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-40725: Fixed source code disclosure of local content bsc1228097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS6AI score0.04134EPSS
Exploits3References4
OSV
OSV
added 2024/07/18 10:15 a.m.5 views

AZL-43427 CVE-2024-40725 affecting package httpd for versions less than 2.4.62-1

A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local...

5.3CVSS6.4AI score0.04134EPSS
Exploits3References1
OSV
OSV
added 2024/07/04 9:15 a.m.2 views

ALPINE-CVE-2024-39884

A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example,...

6.2CVSS6.8AI score0.00889EPSS
Exploits0References1
OSV
OSV
added 2024/07/04 9:15 a.m.2 views

DEBIAN-CVE-2024-39884

A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example,...

6.2CVSS6.3AI score0.00889EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/08/09 8:24 p.m.4 views

CVE-2022-20358

In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for...

4.8AI score0.00179EPSS
Exploits0References1
Rows per page
Query Builder