Http Server@* Security Vulnerabilities and Issues — Http Server@* CVE List

Lucene search

ApacheHttp Server*

3 matches found

CVE•added 2023/01/17 8:15 p.m.•2285 views

CVE-2022-37436

Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.

5.3CVSS7.3AI score0.00492EPSS

CVE•added 2023/01/17 8:15 p.m.•2276 views

CVE-2006-20001

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

7.5CVSS8.5AI score0.00677EPSS

CVE•added 2023/10/23 7:15 a.m.•1326 views

CVE-2023-31122

Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.

7.5CVSS7.8AI score0.00219EPSS