Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2020/11/20 12:0 a.m.76 views

Amazon Linux 2 : httpd (ALAS-2020-1490)

The version of httpd installed on the remote host is prior to 2.4.46-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1490 advisory. Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE A flaw was found in Apache httpd in...

9.8CVSS6.7AI score0.90039EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2020/09/17 12:0 a.m.107 views

Amazon Linux 2 : mod_http2 (ALAS-2020-1493)

The version of modhttp2 installed on the remote host is prior to 1.15.14-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1493 advisory. Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 reque...

7.5CVSS6.7AI score0.89744EPSS
Exploits2References5
OPENSUSE Linux
OPENSUSE Linux
added 2020/08/29 12:0 a.m.79 views

Security update for apache2 (moderate)

openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2020:1285-1 Rating: moderate References: 1174052 1175070 1175071 1175074 Cross-References: CVE-2020-11984 CVE-2020-11993 CVE-2020-9490 Affected Products: openSUSE Leap 15.2 An update that solves three vulnerabiliti...

9.8CVSS7.3AI score0.90039EPSS
Exploits4References4
Apache Httpd
Apache Httpd
added 2020/06/16 12:0 a.m.147 views

Apache Httpd < 2.4.44 : Push Diary Crash on Specifically Crafted HTTP/2 Header

In Apache HTTP Server versions 2.4.20 to 2.4.43, when trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 above "info" will mitigate...

7.5CVSS8.6AI score0.58716EPSS
Exploits2Affected Software1
Rows per page
Query Builder