43 matches found
CVE-2020-8268
Prototype pollution vulnerability in json8-merge-patch npm package 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor...
NovaCHRON Zeitsysteme Smart Time Plus 安全漏洞
NovaCHRON Zeitsysteme Smart Time Plus is a time management only program from NovaCHRON Zeitsysteme. A security vulnerability exists in NovaCHRON Zeitsysteme Smart Time Plus versions prior to v8.x through v8.6, which stems from a SQL injection vulnerability in the addProject method...
httpd:2.4 security update
httpd 2.4.37-64.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-64 - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.37-63 - modxml2enc: fix media type handling Resolves: RHEL-14321 modhttp2 1.15.7-10 - Resolves: RHEL-29817 -...
httpd: Request splitting via HTTP/2 method injection and mod_proxy
A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...
httpd: Request splitting via HTTP/2 method injection and mod_proxy
A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...
httpd: Request splitting via HTTP/2 method injection and mod_proxy
A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...
RHEL 7 : httpd24-httpd (RHSA-2022:6753)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6753 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsed: Read/wri...
Moderate: Red Hat Security Advisory: httpd:2.4 security and bug fix update
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
httpd: Request splitting via HTTP/2 method injection and mod_proxy
A NULL pointer dereference was found in Apache httpd modh2. The highest threat from this flaw is to system integrity...
SUSE-SU-2021:3335-1 Security update for apache2
This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. bsc1190703 - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. bsc1190702 - CVE-2021-39275: Fixed an out-of-bounds write in apescapequotes via malicious inpu...
Apache httpd -- multiple vulnerabilities
The Apache project reports: moderate: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 moderate: NULL pointer dereference in httpd core CVE-2021-34798 moderate: modproxyuwsgi out of bound read CVE-2021-36160 low: apescapequotes buffer overflow CVE-2021-39275 high: modprox...
openSUSE: Security Advisory for apache2 (openSUSE-SU-2021:1234-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:1234-1 Security update for apache2
This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387. This update was imported from the SUSE:SLE-15-SP2:Update update project...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:1234-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update...
SUSE: Security Advisory (SUSE-SU-2021:2954-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2021:2954-1 Security update for apache2
This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387...
SUSE-SU-2021:2954-1 Security update for apache2
This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and modproxy bsc1189387...
SUSE: Security Advisory (SUSE-SU-2021:2918-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:2954-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.3 An update...
Request splitting via HTTP/2 method injection and mod_proxy
...