Lucene search
K

94 matches found

OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2736)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.41611EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.39 views

EulerOS 2.0 SP11 : httpd (EulerOS-SA-2024-2557)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution viabackend...

9.8CVSS7.8AI score0.41611EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.38 views

EulerOS 2.0 SP11 : httpd (EulerOS-SA-2024-2583)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution viabackend...

9.8CVSS7.8AI score0.41611EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2024/10/09 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2529)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2024/09/25 11:22 a.m.5 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.46 views

EulerOS 2.0 SP10 : httpd (EulerOS-SA-2024-2417)

According to the versions of the httpd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Encoding problem in modproxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to backend services,...

9.8CVSS8.2AI score0.99957EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2024/09/12 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2024-2368)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.99957EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2024/09/11 11:26 a.m.7 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/11 11:18 a.m.3 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/09 1:48 a.m.6 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/09 1:33 a.m.5 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/03 1:55 a.m.6 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/26 8:9 a.m.5 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/26 7:39 a.m.3 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/12 2:39 a.m.11 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/08 2:42 p.m.5 views

httpd: Security issues via backend applications whose response headers are malicious or exploitable

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution...

9.8CVSS7.1AI score0.41611EPSS
Exploits0References5
Veracode
Veracode
added 2024/07/09 6:7 a.m.31 views

Server Side Request Forgery (SSRF)

Apache HTTP Server 2.4.59 is vulnerable to SSRF. The vulnerability is due to a missing validation in response headers leading to information disclosure, SSRF or local script execution via backend applications which have malicious or exploitable header...

9.8CVSS6.2AI score0.41611EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/07/03 7:16 a.m.42 views

BIT-APACHE-2024-38476 Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect

Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

9.8CVSS8.6AI score0.41611EPSS
Exploits0References5
Hacker One
Hacker One
added 2024/07/03 7:9 a.m.73 views

Internet Bug Bounty: important: Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect (CVE-2024-38476)

The Apache HTTP Server vulnerability CVE-2024-38476 was discovered in versions 2.4.0 through 2.4.59. The vulnerability allowed the use of exploitable or malicious backend application output to run local handlers via internal redirect. Users were recommended to upgrade to version 2.4.60, which fix...

9.8CVSS8.6AI score0.41611EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/07/02 5:32 p.m.262 views

CVE-2024-38476

A flaw was found in httpd. Backend applications whose response headers are malicious or exploitable may allow information disclosure, server-side request forgery SSRF or local script execution. Mitigation Red Hat has investigated whether a possible mitigation exists for this issue, and has not be...

9.1CVSS8.8AI score0.41611EPSS
Exploits0References4
Rows per page
Query Builder