Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2020-12745

Malicious code in bioql PyPI...

6.1CVSS6.7AI score0.56691EPSS
Exploits0References37
OSV
OSV
added 2024/03/06 10:57 a.m.71 views

BIT-APACHE-2020-1927

In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL...

6.1CVSS7.1AI score0.56691EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.84 views

CentOS 8 : httpd:2.4 (CESA-2021:4257)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:4257 advisory. - httpd: modsession: NULL pointer dereference when parsing Cookie header CVE-2021-26690 - httpd: Unexpected URL matching with 'MergeSlashes OFF'...

7.5CVSS6.7AI score0.65067EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/11/09 5:26 p.m.80 views

Moderate: Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update

An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.7AI score0.65067EPSS
Exploits0References9
OSV
OSV
added 2021/11/09 8:52 a.m.46 views

ALSA-2021:4257 Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsession: NULL pointer dereference when parsing Cookie header CVE-2021-26690 httpd: Unexpected URL matching with 'MergeSlashes OFF' CVE-2021-30641 For more details about t...

7.5CVSS7.8AI score0.65067EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2021/11/09 8:52 a.m.55 views

Moderate: httpd:2.4 security, bug fix, and enhancement update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modsession: NULL pointer dereference when parsing Cookie header CVE-2021-26690 httpd: Unexpected URL matching with 'MergeSlashes OFF' CVE-2021-30641 For more details about t...

7.5CVSS7.9AI score0.65067EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/06/25 12:0 a.m.67 views

FreeBSD : Apache httpd -- Multiple vulnerabilities (cce76eca-ca16-11eb-9b84-d4c9ef517024)

The Apache httpd reports : - moderate: modproxywstunnel tunneling of non Upgraded connections CVE-2019-17567 - moderate: Improper Handling of Insufficient Privileges CVE-2020-13938 - low: modproxyhttp NULL pointer dereference CVE-2020-13950 - low: modauthdigest possible stack overflow by one nul...

9.8CVSS7.2AI score0.68067EPSS
Exploits0References10
Cvelist
Cvelist
added 2021/06/10 7:10 a.m.61 views

CVE-2021-30641 Unexpected URL matching with 'MergeSlashes OFF'

Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF'...

7.5AI score0.52331EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/06/10 12:0 a.m.33 views

Apache HTTP Server 2.4.39 - 2.4.46 Unexpected URL Matching Vulnerability - Windows

Apache HTTP Server is prone to an unexpected URL matching vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

5.3CVSS6.6AI score0.52331EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/06/10 12:0 a.m.27 views

Apache HTTP Server 2.4.39 - 2.4.46 Unexpected URL Matching Vulnerability - Linux

Apache HTTP Server is prone to an unexpected URL matching vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

5.3CVSS6.6AI score0.52331EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/06/03 12:0 a.m.45 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-1601)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7AI score0.56691EPSS
Exploits0References2
OSV
OSV
added 2019/08/14 12:0 a.m.2 views

UBUNTU-CVE-2019-10098

In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL...

6.1CVSS6.7AI score0.73981EPSS
Exploits1References4
Rows per page
Query Builder