CVE-2017-3169

Опубликовано: 20 июн. 2017

Источник: debian

EPSS Средний

Описание

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
apache2	fixed	2.4.25-4		package

EPSS

Процентиль: 97%

0.3838

Средний

Связанные уязвимости

CVE-2017-3169

CVSS3: 9.8

ubuntu

больше 8 лет назад

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.

CVE-2017-3169

CVSS3: 3.7

redhat

больше 8 лет назад

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.

CVE-2017-3169

CVSS3: 9.8

nvd

больше 8 лет назад

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.

GHSA-p3gj-wq33-qg67

CVSS3: 9.8

github

больше 3 лет назад

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.

BDU:2017-02152

CVSS3: 9.8

fstec

почти 9 лет назад

Уязвимость модуля mod_ssl веб-сервера Apache HTTP Server, позволяющая нарушителю получить доступ к локальным файлам

EPSS

Процентиль: 97%

0.3838

Средний