Lucene search
K

4 matches found

OSV
OSV
added 2026/05/08 11:42 a.m.11 views

CLSA-2026-1778152899 httpd: Fix of 2 CVEs

CVE-2017-15710: modauthnzldap out-of-bounds write when accept-language header value is shorter than two characters - CVE-2017-15715: regex anchor in / can match before an embedded newline, allowing .htaccess bypass of trailing-extension filters...

8.1CVSS6.7AI score0.86006EPSS
Exploits0References1
OSV
OSV
added 2026/05/07 6:26 p.m.9 views

CLSA-2026-1778178379 httpd: Fix of 2 CVEs

CVE-2017-15710: modauthnzldap out-of-bounds write when accept-language header value is shorter than two characters - CVE-2017-15715: regex anchor in / can match before an embedded newline, allowing .htaccess bypass of trailing-extension filters...

8.1CVSS7.3AI score0.86006EPSS
Exploits0References1
OSV
OSV
added 2017/07/13 3:29 a.m.3 views

UBUNTU-CVE-2017-11173

Missing anchor in generated regex for rack-cors before 0.4.1 allows a malicious third-party site to perform CORS requests. If the configuration were intended to allow only the trusted example.com domain name and not the malicious example.net domain name, then example.com.example.net as well as...

8.8CVSS7.1AI score0.02345EPSS
Exploits0References5
OSV
OSV
added 2017/07/13 3:29 a.m.2 views

DEBIAN-CVE-2017-11173

Missing anchor in generated regex for rack-cors before 0.4.1 allows a malicious third-party site to perform CORS requests. If the configuration were intended to allow only the trusted example.com domain name and not the malicious example.net domain name, then example.com.example.net as well as...

8.8CVSS6.8AI score0.02345EPSS
Exploits0References1
Rows per page
Query Builder