exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 9

CVE-2016-4975

больше 7 лет назад

Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).

CVSS3: 6.1

EPSS: Высокий

CVE-2016-4975

больше 7 лет назад

Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).

CVSS3: 3.7

EPSS: Высокий

CVE-2016-4975

больше 7 лет назад

Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).

CVSS3: 6.1

EPSS: Высокий

CVE-2016-4975

больше 7 лет назад

Possible CRLF injection allowing HTTP response splitting attacks for s ...

CVSS3: 6.1

EPSS: Высокий

GHSA-crcg-r773-w4rv

больше 3 лет назад

Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).

CVSS3: 6.1

EPSS: Высокий

openSUSE-SU-2018:2856-1

больше 7 лет назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2018:2815-2

больше 7 лет назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2018:2815-1

больше 7 лет назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2018:2554-1

больше 7 лет назад

Security update for apache2

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2016-4975 Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).	CVSS3: 6.1	73% Высокий	больше 7 лет назад
CVE-2016-4975 Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).	CVSS3: 3.7	73% Высокий	больше 7 лет назад
CVE-2016-4975 Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).	CVSS3: 6.1	73% Высокий	больше 7 лет назад
CVE-2016-4975 Possible CRLF injection allowing HTTP response splitting attacks for s ...	CVSS3: 6.1	73% Высокий	больше 7 лет назад
GHSA-crcg-r773-w4rv Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).	CVSS3: 6.1	73% Высокий	больше 3 лет назад
openSUSE-SU-2018:2856-1 Security update for apache2			больше 7 лет назад
SUSE-SU-2018:2815-2 Security update for apache2			больше 7 лет назад
SUSE-SU-2018:2815-1 Security update for apache2			больше 7 лет назад
SUSE-SU-2018:2554-1 Security update for apache2			больше 7 лет назад

Уязвимостей на страницу