CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2023/11/06 12:0 a.m.•24 views

Rocky Linux 8 : maven:3.6 (RLSA-2022:1860)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1860 advisory. - Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.U...

5.3CVSS6.7AI score0.00505EPSS

Exploits1References4

IBM Security Bulletins•added 2023/07/28 7:50 p.m.•32 views

Security Bulletin:IBM TRIRIGA Application Platform discloses Apache HttpClient vulnerability (CVE-2020-13956)

Summary Apache HttpClient could allow a remote attacker to bypass security restrictions, caused by the improper handling of malformed authority component in request URIs Vulnerability Details CVEID:CVE-2020-13956 DESCRIPTION: Apache HttpClient could allow a remote attacker to bypass security...

5.3CVSS5.8AI score0.00505EPSS

Amazon•added 2023/02/21 12:0 a.m.•47 views

Medium: httpcomponents-client

Issue Overview: Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution. CVE-2020-13956 Affected Packages: httpcomponents-client...

5.3CVSS7.6AI score0.00505EPSS

Exploits1

IBM Security Bulletins•added 2022/10/06 4:38 a.m.•22 views

Security Bulletin: A vulnerability in Apache HttpClient affects IBM Tivoli Business Service Manager (CVE-2020-13956)

Summary Apache HttpClient is shipped with IBM Tivoli Business Manager 6.2.0 as part of is web service infrastructure. Information about security vulnerabilities affecting Apache HttpClient has been published in a security bulletin. Vulnerability Details CVEID:CVE-2020-13956 DESCRIPTION: Apache...

5.3CVSS6.1AI score0.00505EPSS

IBM Security Bulletins•added 2022/10/06 4:37 a.m.•16 views

Security Bulletin: A security vulnerability has been identified in Apache HttpClient shipped with IBM Tivoli Netcool Impact (CVE-2020-13956)

Summary Apache HttpClient is shipped with IBM Tivoli Netcool Impact to handle HTTP communications. . Information about a security vulnerability affecting Apache HttpClient has been published in a security bulletin. Vulnerability Details CVEID:CVE-2020-13956 DESCRIPTION: Apache HttpClient could...

5.3CVSS5.8AI score0.00505EPSS

Oracle linux•added 2022/05/17 12:0 a.m.•48 views

maven:3.6 security and enhancement update

httpcomponents-client 4.5.10-4 - Fix incorrect handling of malformed authority component in request URIs - Resolves: CVE-2020-13956 maven 1:3.6.2-7 - Add maven-openjdk17 - Resolves: rhbz1991521...

5.3CVSS1.7AI score0.00505EPSS

Exploits1

RedHat Linux•added 2022/05/10 1:54 p.m.•1 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution...

OSV•added 2022/05/10 8:4 a.m.•31 views

RLSA-2022:1860 Moderate: maven:3.6 security and enhancement update

Maven is a software project management and comprehension tool. Based on the concept of a project object model POM, Maven can manage a project's build, reporting and documentation from a central piece of information. Security Fixes: apache-httpclient: incorrect handling of malformed authority...

5.3CVSS6AI score0.00505EPSS

Exploits1References3

RedHat Linux•added 2021/11/02 12:42 p.m.•4 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

RedHat Linux•added 2021/08/11 6:21 p.m.•1 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

Github Security Blog•added 2021/06/03 11:40 p.m.•487 views

Cross-site scripting in Apache HttpClient

5.3CVSS2AI score0.00505EPSS

Exploits1References65Affected Software1

IBM Security Bulletins•added 2021/03/23 4:18 p.m.•32 views

Security Bulletin: IBM Tivoli Netcool Impact is affected by an Apache HttpClient vulnerability (CVE-2020-13956)

Summary IBM Tivoli Netcool Impact has addressed the following Apache HttpClient vulnerability. Vulnerability Details CVEID: CVE-2020-13956 DESCRIPTION: Apache HttpClient could allow a remote attacker to bypass security restrictions, caused by the improper handling of malformed authority component...

5.3CVSS1.2AI score0.00505EPSS

RedHat Linux•added 2021/03/11 5:49 p.m.•2 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

RedHat Linux•added 2021/03/11 5:49 p.m.•102 views

Low: Red Hat Security Advisory: Red Hat Integration Tech-Preview 3 Camel K security update

An update to the Camel K operator image for Red Hat Integration tech-preview is now available. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Low. A Common...

7.5CVSS6.6AI score0.00505EPSS

RedHat Linux•added 2021/02/17 1:40 p.m.•1 views

apache-httpclient: incorrect handling of malformed authority component in request URIs

RedHat Linux•added 2021/01/25 4:19 p.m.•1 views

apache-httpclient: incorrect handling of malformed authority component in request URIs