exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 17

CVE-2024-47252

3 месяца назад

Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

3 месяца назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

3 месяца назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

3 месяца назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

3 месяца назад

Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP ...

CVSS3: 7.5

EPSS: Низкий

GHSA-2qfr-q5v6-m43q

3 месяца назад

CVSS3: 7.5

EPSS: Низкий

BDU:2025-08958

около 1 года назад

Уязвимость функции mod_ssl веб-сервера Apache HTTP Server, позволяющая нарушителю оказать воздействие на целостность защищаемой информации

CVSS3: 7.5

EPSS: Низкий

RLSA-2025:15095

12 дней назад

Moderate: httpd security update

EPSS: Низкий

ELSA-2025-15095

около 1 месяца назад

ELSA-2025-15095: httpd security update (MODERATE)

EPSS: Низкий

ELSA-2025-15023

около 1 месяца назад

ELSA-2025-15023: httpd security update (MODERATE)

EPSS: Низкий

ELSA-2025-15123

около 1 месяца назад

ELSA-2025-15123: httpd:2.4 security update (MODERATE)

EPSS: Низкий

SUSE-SU-2025:02685-1

2 месяца назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02684-1

2 месяца назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02683-1

2 месяца назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02682-1

2 месяца назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02565-1

3 месяца назад

Security update for apache2

EPSS: Низкий

ROS-20250929-15

17 дней назад

Множественные уязвимости httpd

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2024-47252	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP ...	CVSS3: 7.5	0% Низкий	3 месяца назад
GHSA-2qfr-q5v6-m43q Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	3 месяца назад
BDU:2025-08958 Уязвимость функции mod_ssl веб-сервера Apache HTTP Server, позволяющая нарушителю оказать воздействие на целостность защищаемой информации	CVSS3: 7.5	0% Низкий	около 1 года назад
RLSA-2025:15095 Moderate: httpd security update			12 дней назад
ELSA-2025-15095 ELSA-2025-15095: httpd security update (MODERATE)			около 1 месяца назад
ELSA-2025-15023 ELSA-2025-15023: httpd security update (MODERATE)			около 1 месяца назад
ELSA-2025-15123 ELSA-2025-15123: httpd:2.4 security update (MODERATE)			около 1 месяца назад
SUSE-SU-2025:02685-1 Security update for apache2			2 месяца назад
SUSE-SU-2025:02684-1 Security update for apache2			2 месяца назад
SUSE-SU-2025:02683-1 Security update for apache2			2 месяца назад
SUSE-SU-2025:02682-1 Security update for apache2			2 месяца назад
SUSE-SU-2025:02565-1 Security update for apache2			3 месяца назад
ROS-20250929-15 Множественные уязвимости httpd	CVSS3: 7.5		17 дней назад

Уязвимостей на страницу