CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

SUSE CVE•added 2023/02/15 5:49 a.m.•1 views

SUSE CVE-2011-4897

Tor before 0.2.2.25-alpha, when configured as a relay without the Nickname configuration option, uses the local hostname as the Nickname value, which allows remote attackers to obtain potentially sensitive information by reading this value...

4.3CVSS8.9AI score0.0025EPSS

Exploits0References3

NVD•added 2022/05/02 11:15 p.m.•16 views

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

5.3CVSS0.00198EPSS

Exploits0References2

OSV•added 2022/05/02 11:15 p.m.•19 views

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

5.3CVSS6.6AI score

Exploits0References2

Cvelist•added 2022/05/02 10:8 p.m.•16 views

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

5.4AI score0.00198EPSS

Exploits0References2

CVE•added 2022/05/02 10:8 p.m.•77 views

CVE-2021-4138

Geckodriver vulnerability CVE-2021-4138 is supported by the CNNVD entry, which states that geckodriver versions prior to 0.30.0 are affected due to improved host header checks. The issue affects the HTTP API exposed by geckodriver/WebDriver; impact and exploitation details are not deeply describe...

5.3CVSS5.1AI score0.00198EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/05/02 12:0 a.m.•2 views

geckodriver安全漏洞

geckodriver is an application program. It provides an HTTP API described by the WebDriver protocol to communicate with the Gecko browser. A security vulnerability exists in geckodriver versions prior to 0.30.0, which stems from improved host header checking to reject requests that are not sent to...

5.3CVSS5.8AI score0.00198EPSS

Exploits0References3

RedhatCVE•added 2022/02/10 3:51 p.m.•77 views

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

7.5CVSS1AI score0.00198EPSS

Exploits0References3

Tenable Nessus•added 2019/09/26 12:0 a.m.•11 views

openSUSE Security Update : links (openSUSE-2019-2185)

This update for links fixes the following issues : links was updated to 2.20.1 : - libevent bug fixes links was updated to 2.20 : - Security bug fixed: when links was connected to tor, it would send real dns requests outside the tor network when the displayed page contains link elements with...

5.5AI score

Exploits0References2

OpenVAS•added 2012/09/10 12:0 a.m.•27 views

Slackware: Security Advisory (SSA:2004-239-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.06299EPSS

Exploits0References2

OSV•added 2011/12/23 3:59 a.m.•1 views

DEBIAN-CVE-2011-4897

4.3CVSS6.4AI score0.0025EPSS

Exploits0References1

Cvelist•added 2008/03/18 11:0 p.m.•17 views

CVE-2008-0989

Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to execute arbitrary code via format string specifiers in the local hostname...

8.6AI score0.00066EPSS

Exploits1References9