Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Privilege Escalation

🗓️ 11 Jul 2021 18:17:25Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 29 Views

apache2 privilege escalation vulnerability due to lack of HTTP validation, authentication or authorizatio

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: IBM Rational Build Forge 8.0.x is affected by Apache HTTP Server version used in it. (CVE-2021-31618, CVE-2020-13950, CVE-2019-17567, CVE-2020-26691, CVE-2021-26690, CVE-2020-13938, CVE-2021-30641, CVE-2020-35452)
29 Apr 202502:10
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in Apache HTTP Server affect IBM i
24 Sep 202122:34
ibm
Tenable Nessus		Amazon Linux 2 : httpd (ALAS-2021-1659)
24 Jun 202100:00
nessus
Tenable Nessus		Amazon Linux 2 : httpd (ALAS-2021-1674)
1 Jul 202100:00
nessus
Tenable Nessus		Amazon Linux AMI : httpd24 (ALAS-2021-1514)
13 Jul 202100:00
nessus
Tenable Nessus		Apache 2.4.x < 2.4.47 Multiple Vulnerabilities
4 Jun 202100:00
nessus
Tenable Nessus		Debian dla-3818 : apache2 - security update
25 May 202400:00
nessus
Tenable Nessus		FreeBSD : Apache httpd -- Multiple vulnerabilities (cce76eca-ca16-11eb-9b84-d4c9ef517024)
25 Jun 202100:00
nessus
Tenable Nessus		GLSA-202107-38 : Apache: Multiple vulnerabilities
24 Jan 202200:00
nessus
Tenable Nessus		CBL Mariner 2.0 Security Update: httpd (CVE-2019-17567)
20 Mar 202300:00
nessus
Rows per page
Vulners
Node
debianapache2Match2.4.46-4debian
AND
debianapache2Match2.4.46-2debian
AND
debiandebian_linuxMatch999
OR
debianapache2Match2.4.46-2debian
AND
debiandebian_linuxMatch11
OR
debianapache2Match2.4.38-3+deb10u4debian
AND
debianapache2Match2.4.38-3+deb10u5debian
AND
debiandebian_linuxMatch10
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.77.0_2.jbcs.el7
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.64.1_36.jbcs.el7
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.64.1_21.jbcs.el7
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.64.1_44.jbcs.el7
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.64.1_14.jbcs.el7
OR
jbcs-httpd24-curljbcs-httpd24-curlMatch7.77.0_2.el8jbcs
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.12_1.final_redhat_2.el8jbcs
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.8_5.final_redhat_2.el8jbcs
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.8_1.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.12_41.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.12_13.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.16_5.final_redhat_2.el8jbcs
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.14_1.final_redhat_2.el8jbcs
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.14_11.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.12_9.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.14_16.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.14_20.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.8_1.final_redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.14_4.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.5_13.final_redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.1_10.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_cluster-nativejbcs-httpd24-mod_cluster-nativeMatch1.3.8_3.final_redhat_2.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_60.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.1_19.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_20.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.1_18.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_51.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_16.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.1_23.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_63.ga.el8jbcs
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.8.0_13.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_57.ga.jbcs.el7
OR
jbcs-httpd24-mod_securityjbcs-httpd24-mod_securityMatch2.9.2_58.ga.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.46_7.redhat_1.el8jbcs
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_10.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.40_10.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.46_1.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.46_26.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_4.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_16.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.46_22.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.43_1.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_13.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_1.redhat_1.el8jbcs
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.46_8.redhat_1.el8jbcs
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.41_14.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_jkjbcs-httpd24-mod_jkMatch1.2.48_11.redhat_1.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_36.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_24.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_33.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_36.el8jbcs
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_10.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_31.jbcs.el7
OR
jbcs-httpd24-mod_mdjbcs-httpd24-mod_mdMatch2.0.8_30.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1g_6.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1c_32.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1c_4.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2h_14.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1g_3.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2n_15.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2n_14.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2h_13.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1g_6.el8jbcs
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.1.1c_16.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2h_4.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2n_11.jbcs.el7
OR
jbcs-httpd24-openssljbcs-httpd24-opensslMatch1.0.2h_12.jbcs.el7
OR
jbcs-httpd24-openssl-chiljbcs-httpd24-openssl-chilMatch1.0.0_5.jbcs.el7
OR
jbcs-httpd24-openssl-chiljbcs-httpd24-openssl-chilMatch1.0.0_5.el8jbcs
OR
jbcs-httpd24-openssl-chiljbcs-httpd24-openssl-chilMatch1.0.0_3.jbcs.el7
OR
jbcs-httpd24-openssl-chiljbcs-httpd24-openssl-chilMatch1.0.0_1.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_12.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_3.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_11.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_19.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.11.3_22.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_17.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_17.el8jbcs
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.15.7_14.jbcs.el7
OR
jbcs-httpd24-mod_http2jbcs-httpd24-mod_http2Match1.11.3_8.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_63.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_105.el8jbcs
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_104.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_73.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_86.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_14.jbcs.el7
OR
jbcs-httpd24-aprjbcs-httpd24-aprMatch1.6.3_31.jbcs.el7
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_82.el8jbcs
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_54.jbcs.el7
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_75.jbcs.el7
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_24.jbcs.el7
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_9.jbcs.el7
OR
jbcs-httpd24-apr-utiljbcs-httpd24-apr-utilMatch1.6.1_48.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_35.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_37.el8jbcs
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.12.0_9.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_4.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.29.0_8.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_37.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.29.0_9.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_25.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_34.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_1.jbcs.el7
OR
jbcs-httpd24-nghttp2jbcs-httpd24-nghttp2Match1.39.2_10.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_74.el8jbcs
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.29_40.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.23_102.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.23_122.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_57.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_41.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.23_114.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.29_17.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_70.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.23_120.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_66.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.6_75.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.29_35.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.6_77.sp1.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.23_125.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.29_41.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_52.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_33.jbcs.el7
OR
jbcs-httpd24-httpdjbcs-httpd24-httpdMatch2.4.37_64.jbcs.el7
OR
jbcs-httpd24-openssl-pkcs11jbcs-httpd24-openssl-pkcs11Match0.4.10_7.jbcs.el7
OR
jbcs-httpd24-openssl-pkcs11jbcs-httpd24-openssl-pkcs11Match0.4.10_20.el8jbcs
OR
jbcs-httpd24-openssl-pkcs11jbcs-httpd24-openssl-pkcs11Match0.4.10_18.jbcs.el7
OR
jbcs-httpd24-openssl-pkcs11jbcs-httpd24-openssl-pkcs11Match0.4.10_20.jbcs.el7
SourceLink
listswww.lists.debian.org/debian-lts-announce/2024/05/msg00013.html
security-trackerwww.security-tracker.debian.org/tracker/CVE-2019-17567
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/
securitywww.security.gentoo.org/glsa/202107-38
listswww.lists.apache.org/thread.html/r90f693a5c9fb75550ef1412436d5e682a5f845beb427fa6f23419a3c%40%3Cannounce.httpd.apache.org%3E
listswww.lists.apache.org/thread.html/r90f693a5c9fb75550ef1412436d5e682a5f845beb427fa6f23419a3c@%3Cannounce.httpd.apache.org%3E
listswww.lists.apache.org/thread.html/r7f2b70b621651548f4b6f027552f1dd91705d7111bb5d15cda0a68dd%40%3Cdev.httpd.apache.org%3E
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
10 Jun 2024 18:38Current
2.1Low risk
Vulners AI Score2.1
CVSS 25
CVSS 3.15.3
EPSS0.12438
apache2privilege escalationvulnerabilityhttp validationauthenticationauthorization
29