CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OpenVAS•added 2024/05/27 12:0 a.m.•45 views

Debian: Security Advisory (DLA-3818-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.87555EPSS

Exploits3References2

RedHat Linux•added 2023/09/11 1:24 p.m.•6 views

httpd: mod_proxy_uwsgi HTTP response splitting

An HTTP Response Smuggling vulnerability was found in the Apache HTTP Server via modproxyuwsgi. This security issue occurs when special characters in the origin response header can truncate or split the response forwarded to the client...

7.5CVSS7.1AI score0.00667EPSS

Exploits0References5

OSV•added 2023/03/07 4:15 p.m.•2 views

ALPINE-CVE-2023-27522

HTTP Response Smuggling vulnerability in Apache HTTP Server via modproxyuwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client...

7.5CVSS7AI score0.00667EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 3:59 a.m.•1 views

SUSE CVE-2020-11984

Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE...

7.5CVSS6.9AI score0.7629EPSS

Exploits2References7

VulnCheck KEV•added 2022/02/22 12:0 a.m.•1 views

VulnCheck KEV: CVE-2020-11984

Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE...

9.8CVSS6.9AI score0.7629EPSS

Exploits2References1

OSV•added 2021/09/16 3:15 p.m.•3 views

AZL-6485 CVE-2021-36160 affecting package httpd for versions less than 2.4.52-1

A carefully crafted request uri-path can cause modproxyuwsgi to read above the allocated memory and crash DoS. This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 inclusive...

7.5CVSS7.2AI score0.04687EPSS

Exploits0References1

CNNVD•added 2021/09/16 12:0 a.m.•2 views

Apache HTTP Server 缓冲区错误漏洞

Apache HTTP Server is an open source web server from the Apache Foundation. Apache HTTP Server versions 2.4.30 to 2.4.48 contain a denial-of-service vulnerability that stems from a network system or product that does not properly validate incoming data. An attacker could exploit this vulnerabilit...

7.5CVSS7.9AI score0.04687EPSS

Exploits0References50

Positive Technologies•added 2021/04/26 12:0 a.m.•8 views

PT-2021-5273 · Apache +10 · Apache Http Server +10

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions 2.4.30 through 2.4.48 Description: A carefully crafted request uri-path can cause mod proxy uwsgi to read above the allocated memory and crash, resulting in a denial of service DoS. The issue is related to the mod...

10CVSS8.5AI score0.94461EPSS

Exploits228References271