CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cent OS•added 2022/01/25 5:31 p.m.•691 views

httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update

CentOS Errata and Security Advisory CESA-2022:0143 An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7.4AI score0.86227EPSS

Exploits4References7

RedHat Linux•added 2022/01/25 1:33 p.m.•1 views

httpd: mod_lua: Possible buffer overflow when parsing multipart content

A buffer overflow flaw in httpd's lua module could allow an out-of-bounds write. An attacker who is able to submit a crafted request to an httpd instance that is using the lua module may be able to cause an impact to confidentiality, integrity, and/or availability...

9.8CVSS7.3AI score0.86227EPSS

RedHat Linux•added 2022/01/25 1:33 p.m.•85 views

Important: Red Hat Security Advisory: httpd:2.4 security update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 8.2 Extended Update Support, and Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.8CVSS7.6AI score0.86227EPSS

OSV•added 2022/01/25 12:49 p.m.•46 views

ALSA-2022:0258 Important: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible buffer overflow when parsing multipart content CVE-2021-44790 For more details about the security issues, including the impact, a CVSS score, acknowledgment...

9.8CVSS9.5AI score0.86227EPSS

Rockylinux•added 2022/01/25 12:49 p.m.•62 views

httpd:2.4 security update

An update is available for httpd, modhttp2, modmd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful,...

9.8CVSS0.7AI score0.86227EPSS

OSV•added 2022/01/25 12:49 p.m.•37 views

RLSA-2022:0258 Important: httpd:2.4 security update

9.8CVSS9.5AI score0.86227EPSS

AlmaLinux•added 2022/01/25 12:49 p.m.•208 views

Important: httpd:2.4 security update

9.8CVSS1.3AI score0.86227EPSS

OSV•added 2022/01/18 4:51 p.m.•19 views

SUSE-SU-2022:0119-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-44224: Fixed NULL dereference or SSRF in forward proxy configurations. bsc1193943 - CVE-2021-44790: Fixed buffer overflow when parsing multipart content in modlua. bsc1193942...

9.8CVSS9.4AI score0.86227EPSS

Tenable Nessus•added 2022/01/18 12:0 a.m.•66 views

Oracle Linux 7 : httpd (ELSA-2022-0143)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0143 advisory. - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690 - Resolves: 2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed...

9.8CVSS8.1AI score0.86227EPSS

Oracle linux•added 2022/01/18 12:0 a.m.•73 views

httpd security update

2.4.6-97.0.5.4 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.4 - Resolves: 2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: 2031074 - CVE-2021-39275 httpd:...

9.8CVSS2.7AI score0.86227EPSS

Tenable Nessus•added 2022/01/18 12:0 a.m.•47 views

Scientific Linux Security Update : httpd on SL7.x x86_64 (2022:0143)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:0143-1 advisory. - httpd: modlua: Possible buffer overflow when parsing multipart content CVE-2021-44790 - httpd: modsession: Heap overflow via a crafted...

9.8CVSS8.2AI score0.86227EPSS

RedHat Linux•added 2022/01/17 9:10 a.m.•239 views

Important: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS7.4AI score0.86227EPSS

Tenable Nessus•added 2022/01/17 12:0 a.m.•105 views

RHEL 7 : httpd (RHSA-2022:0143)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0143 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modlua: Possible...

9.8CVSS8.3AI score0.86227EPSS

Exploits4References10

Tenable Nessus•added 2022/01/13 12:0 a.m.•37 views

SUSE SLES12 Security Update : apache2 (SUSE-SU-2022:0065-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0065-1 advisory. - A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for...

9.8CVSS8.3AI score0.86227EPSS

Exploits4References7

Debian•added 2022/01/04 4:38 p.m.•127 views

[SECURITY] [DSA 5035-1] apache2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5035-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 04, 2022 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.86227EPSS

Microsoft CVE•added 2021/12/23 8:0 a.m.•0 views

Possible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlier

...

9.8CVSS8.6AI score0.86227EPSS