Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.7 views

EulerOS Virtualization 2.10.0 : httpd (EulerOS-SA-2026-1556)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader...

8.3CVSS7.2AI score0.01527EPSS
Exploits0References4
Debian
Debian
added 2026/01/24 10:23 p.m.10 views

[SECURITY] [DLA 4452-1] apache2 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4452-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès January 24, 2026 https://wiki.debian.org/LTS -...

8.3CVSS5.7AI score0.01527EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/08 12:0 a.m.3 views

RHEL 10 : httpd (RHSA-2026:0171)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:0171 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: Apache HTTP Server: Serv...

8.3CVSS5.6AI score0.01527EPSS
Exploits0References4
OSV
OSV
added 2026/01/07 3:49 p.m.6 views

CLSA-2026-1767800942 httpd: Fix of CVE-2025-58098

CVE-2025-58098: don't pass querry string args as command line arguments to SSI-invoked CGI scripts...

8.3CVSS5.8AI score0.01527EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2025/12/22 3:1 p.m.3 views

CVE-2025-58098 affecting package httpd for versions less than 2.4.66-1

CVE-2025-58098 affecting package httpd for versions less than 2.4.66-1. An upgraded version of the package is available that resolves this issue...

8.3CVSS6.9AI score0.01527EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/19 2:46 p.m.6 views

CVE-2025-58098 affecting package httpd for versions less than 2.4.66-1

CVE-2025-58098 affecting package httpd for versions less than 2.4.66-1. An upgraded version of the package is available that resolves this issue...

8.3CVSS6.9AI score0.01527EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/12/11 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-9621c19da8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.8AI score0.01527EPSS
Exploits0References9
OSV
OSV
added 2025/12/09 6:6 a.m.3 views

BELL-CVE-2025-58098

Bulletin has no description...

8.3CVSS6.9AI score0.01527EPSS
Exploits0References1
OSV
OSV
added 2025/12/05 2:15 p.m.0 views

DEBIAN-CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7.6AI score0.01527EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/12/05 12:0 a.m.6 views

CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7AI score0.01527EPSS
Exploits0References4
Circl
Circl
added 2025/12/04 2:18 p.m.4 views

CVE-2025-58098

creationtimestamp| type| source ---|---|--- 2025-12-04 14:18:26+00:00| seen| https://seclists.org/oss-sec/2025/q4/241 2025-12-04 16:01:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m76dsazp6v2s 2025-12-04 17:40:45+00:00| seen|...

8.3CVSS7.2AI score0.01527EPSS
Exploits0References18
Rows per page
Query Builder