Lucene search
K

43 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:11 p.m.15 views

CVE-2020-8268

Prototype pollution vulnerability in json8-merge-patch npm package 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor...

7.5CVSS6.7AI score0.01277EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/02/24 12:0 a.m.3 views

NovaCHRON Zeitsysteme Smart Time Plus 安全漏洞

NovaCHRON Zeitsysteme Smart Time Plus is a time management only program from NovaCHRON Zeitsysteme. A security vulnerability exists in NovaCHRON Zeitsysteme Smart Time Plus versions prior to v8.x through v8.6, which stems from a SQL injection vulnerability in the addProject method...

5.4CVSS7.5AI score0.00222EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/05/24 12:0 a.m.73 views

httpd:2.4 security update

httpd 2.4.37-64.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-64 - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.37-63 - modxml2enc: fix media type handling Resolves: RHEL-14321 modhttp2 1.15.7-10 - Resolves: RHEL-29817 -...

7.5CVSS7.5AI score0.99999EPSS
Exploits30
RedHat Linux
RedHat Linux
added 2022/10/26 8:15 p.m.8 views

httpd: Request splitting via HTTP/2 method injection and mod_proxy

A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

7.5CVSS7.1AI score0.46179EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/10/26 8:5 p.m.10 views

httpd: Request splitting via HTTP/2 method injection and mod_proxy

A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

7.5CVSS7.1AI score0.46179EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/09/29 1:33 p.m.6 views

httpd: Request splitting via HTTP/2 method injection and mod_proxy

A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

7.5CVSS7.1AI score0.46179EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.120 views

RHEL 7 : httpd24-httpd (RHSA-2022:6753)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6753 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsed: Read/wri...

9.8CVSS7.9AI score0.99999EPSS
Exploits8References34
RedHat Linux
RedHat Linux
added 2022/05/10 2:18 p.m.150 views

Moderate: Red Hat Security Advisory: httpd:2.4 security and bug fix update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.2CVSS7AI score0.82295EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2022/05/10 2:18 p.m.8 views

httpd: Request splitting via HTTP/2 method injection and mod_proxy

A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...

7.5CVSS7.1AI score0.46179EPSS
Exploits1References5
OSV
OSV
added 2021/10/12 6:19 a.m.24 views

SUSE-SU-2021:3335-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. bsc1190703 - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. bsc1190702 - CVE-2021-39275: Fixed an out-of-bounds write in apescapequotes via malicious inpu...

9.8CVSS8.5AI score0.99999EPSS
Exploits6References11
FreeBSD
FreeBSD
added 2021/09/16 12:0 a.m.101 views

Apache httpd -- multiple vulnerabilities

The Apache project reports: moderate: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 moderate: NULL pointer dereference in httpd core CVE-2021-34798 moderate: modproxyuwsgi out of bound read CVE-2021-36160 low: apescapequotes buffer overflow CVE-2021-39275 high: modprox...

9.8CVSS2AI score0.99999EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2021/09/08 12:0 a.m.34 views

openSUSE: Security Advisory for apache2 (openSUSE-SU-2021:1234-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.7AI score0.46179EPSS
Exploits1References2
OSV
OSV
added 2021/09/07 9:31 a.m.17 views

OPENSUSE-SU-2021:1234-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387. This update was imported from the SUSE:SLE-15-SP2:Update update project...

7.5CVSS7.9AI score0.46179EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2021/09/07 12:0 a.m.63 views

Security update for apache2 (important)

openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:1234-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update...

9.1CVSS8.1AI score0.46179EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2021/09/05 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2021:2954-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.46179EPSS
Exploits1References2
OSV
OSV
added 2021/09/03 12:43 p.m.16 views

OPENSUSE-SU-2021:2954-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387...

7.5CVSS7.9AI score0.46179EPSS
Exploits1References3
OSV
OSV
added 2021/09/03 12:43 p.m.15 views

SUSE-SU-2021:2954-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387...

7.5CVSS8.6AI score0.46179EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/09/03 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:2918-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.46179EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2021/09/03 12:0 a.m.52 views

Security update for apache2 (important)

openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:2954-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.3 An update...

9.1CVSS8.1AI score0.46179EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2021/08/25 7:0 a.m.3 views

Request splitting via HTTP/2 method injection and mod_proxy

...

7.5CVSS5.1AI score0.46179EPSS
Exploits1
Rows per page
Query Builder