CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

OpenVAS•added 2026/03/16 12:0 a.m.•0 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2026-1536)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS5.8AI score0.00145EPSS

Exploits0References2

OpenVAS•added 2026/03/16 12:0 a.m.•0 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2026-1312)

8.3CVSS7.2AI score0.00145EPSS

Exploits0References2

OpenVAS•added 2026/03/16 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2026-1338)

8.3CVSS5.8AI score0.00145EPSS

Exploits0References2

OSV•added 2026/03/06 12:43 p.m.•2 views

OESA-2026-1529 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: An integer overflow vulnerability was found in Apache HTTP Server versions 2.4.30 to 2.4.66. In case of failed ACME certificate renewal, after a number of failures 30 days in default configurations, the...

8.3CVSS5.8AI score0.00145EPSS

Exploits0References5

RedHat Linux•added 2026/02/23 7:20 p.m.•2 views

httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

A permissions bypass flaw has been discovered in the apache HTTP server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid...

5.4CVSS5.7AI score0.00041EPSS

Exploits0References6

RedHat Linux•added 2026/02/23 7:19 p.m.•1 views

httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

5.4CVSS5.7AI score0.00041EPSS

Exploits0References6

OSV•added 2026/01/22 4:39 p.m.•2 views

CLSA-2026-1769099972 httpd: Fix of 2 CVEs

CVE-2025-65082: fix CGI environment variable injection by preventing HTTP headers from overriding server-set variables and added regression tests - CVE-2025-66200: prevent suexec bypass by removing request notes usage and rejecting the undocumented RequestHeader note option...

6.5CVSS6.6AI score0.00145EPSS

Exploits0References1

OSV•added 2026/01/14 10:49 a.m.•1 views

OPENSUSE-SU-2026:20030-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2025-55753: Fixed modmd ACME, unintended retry intervals bsc1254511 - CVE-2025-58098: Fixed Server Side Includes adds query string to exec cmd bsc1254512 - CVE-2025-65082: Fixed CGI environment variable override bsc1254514 - CVE-2025-66200...

8.3CVSS6.7AI score0.00145EPSS

Exploits0References8

Tenable Nessus•added 2026/01/13 12:0 a.m.•2 views

MiracleLinux 9 : httpd-2.4.62-7.el9_7.3 (AXSA:2025-11631:11)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11631:11 advisory. httpd: Apache HTTP Server: CGI environment variable override CVE-2025-65082 httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride...

8.3CVSS7.3AI score0.00145EPSS

Exploits0References4

OSV•added 2026/01/12 10:18 a.m.•2 views

CLSA-2026-1768213076 httpd: Fix of 2 CVEs

CVE-2025-65082: fix CGI environment variable injection by preventing HTTP headers from overriding server-set variables - CVE-2025-66200: prevent suexec bypass by removing request notes usage and rejecting the undocumented RequestHeader note option...

6.5CVSS5.8AI score0.00145EPSS

Exploits0References1

OSV•added 2026/01/05 11:8 a.m.•1 views

SUSE-SU-2026:0020-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2025-55753: Fixed modmd ACME unintended retry intervals bsc1254511 - CVE-2025-65082: Fixed CGI environment variable override bsc1254514 - CVE-2025-58098: Fixed Server Side Includes adding query string to exec cmd=... bsc1254512 -...

8.3CVSS7.1AI score0.00145EPSS

Exploits0References9

OSV•added 2026/01/05 11:8 a.m.•2 views

SUSE-SU-2026:0019-1 Security update for apache2

8.3CVSS5.8AI score0.00145EPSS

Exploits0References9

OSV•added 2025/12/23 9:9 a.m.•2 views

RLSA-2025:23919 Important: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Apache HTTP Server: CGI environment variable override CVE-2025-65082 httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride FileInfo CVE-2025-66200 httpd:...

7.1CVSS6.6AI score0.00145EPSS

Exploits0References4

OSV•added 2025/12/22 9:2 a.m.•2 views

RLSA-2025:23732 Important: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Apache HTTP Server: CGI environment variable override CVE-2025-65082 modmd: Apache HTTP Server: modmd ACME, unintended retry intervals CVE-2025-55753 httpd: Apache HTTP...

7.5CVSS6.8AI score0.00145EPSS

Exploits0References5

AlmaLinux•added 2025/12/22 12:0 a.m.•4 views

Important: httpd:2.4 security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Apache HTTP Server: CGI environment variable override CVE-2025-65082 modmd: Apache HTTP Server: modmd ACME, unintended retry intervals CVE-2025-55753 httpd: Apache HTTP...

8.3CVSS6.6AI score0.00145EPSS

Exploits0References10

OSV•added 2025/12/18 5:17 p.m.•1 views

SUSE-SU-2025:4488-1 Security update for apache2

8.3CVSS6.9AI score0.00145EPSS

Exploits0References9

OSV•added 2025/12/09 11:38 a.m.•3 views

BIT-APACHE-2025-66200 Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65. Users are...

5.4CVSS6.9AI score0.00041EPSS

Exploits0References3