CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

MiracleLinux 3 : httpd-2.2.3-78.0.1.AXS3 (AXSA:2013-441:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-441:02 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2012-3499 Multiple cross-sit...

5.1CVSS8AI score0.58223EPSS

Exploits4References4

Tenable Nessus•added 2025/08/20 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-2053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a POST request comes through AJP and the request exceeds the max-post-size limit maxEntitySize, Undertow's AjpServerRequestConduit implementation closes a...

7.5CVSS6.8AI score0.0032EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 6:9 a.m.•2 views

SUSE CVE-2007-6420

Cross-site request forgery CSRF vulnerability in the balancer-manager in modproxybalancer for Apache HTTP Server 2.2.x allows remote attackers to gain privileges via unspecified vectors...

4.3CVSS7.5AI score0.05697EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 6:9 a.m.•2 views

SUSE CVE-2007-6421

Cross-site scripting XSS vulnerability in balancer-manager in modproxybalancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the 1 ss, 2 wr, or 3 rr parameters, or 4 the URL...

3.5CVSS6.1AI score0.03305EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 6:9 a.m.•1 views

SUSE CVE-2007-6423

Unspecified vulnerability in modproxybalancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL. NOTE: the vendor could not reproduce this issue...

7.8CVSS7AI score0.03763EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 5:51 a.m.•5 views

SUSE CVE-2011-3348

The modproxyajp module in the Apache HTTP Server before 2.2.21, when used with modproxybalancer in certain configurations, allows remote attackers to cause a denial of service temporary "error state" in the backend server via a malformed HTTP request...

4.3CVSS6.8AI score0.34026EPSS

Exploits3References4

ATTACKERKB•added 2022/08/05 4:15 p.m.•3 views

CVE-2022-2053

When a POST request comes through AJP and the request exceeds the max-post-size limit maxEntitySize, Undertow's AjpServerRequestConduit implementation closes a connection without sending any response to the client/proxy. This behavior results in that a front-end proxy marking the backend worker...

7.5CVSS5.9AI score0.0032EPSS

Exploits0References3

OSV•added 2022/08/05 4:15 p.m.•3 views

DEBIAN-CVE-2022-2053

7.5CVSS6.6AI score0.0032EPSS

Exploits0References1

OSV•added 2022/06/23 9:29 a.m.•2 views

USN-5487-2 apache2 regression

USN-5487-1 fixed several vulnerabilities in Apache. Unfortunately, that update introduced a regression when proxying balancer manager connections in some configurations on Ubuntu 14.04 ESM. This update reverts those changes till further fix. We apologize for the inconvenience. Original advisory...

9.8CVSS7.3AI score0.32376EPSS

Exploits2References2

OSV•added 2019/09/17 12:24 p.m.•1 views

USN-4113-2 apache2 regression

USN-4113-1 fixed vulnerabilities in the Apache HTTP server. Unfortunately, that update introduced a regression when proxying balancer manager connections in some configurations. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Stefan Eissing discovered...

6.2AI score

Exploits0References2