exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 46

RLSA-2025:15123

3 месяца назад

Moderate: httpd:2.4 security update

EPSS: Низкий

ELSA-2025-15123

4 месяца назад

ELSA-2025-15123: httpd:2.4 security update (MODERATE)

EPSS: Низкий

SUSE-SU-2025:02685-1

5 месяцев назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02684-1

5 месяцев назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02683-1

5 месяцев назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02682-1

5 месяцев назад

Security update for apache2

EPSS: Низкий

SUSE-SU-2025:02565-1

5 месяцев назад

Security update for apache2

EPSS: Низкий

RLSA-2025:15095

3 месяца назад

Moderate: httpd security update

EPSS: Низкий

RLSA-2025:15023

2 месяца назад

Moderate: httpd security update

EPSS: Низкий

ELSA-2025-15095

4 месяца назад

ELSA-2025-15095: httpd security update (MODERATE)

EPSS: Низкий

ELSA-2025-15023

4 месяца назад

ELSA-2025-15023: httpd security update (MODERATE)

EPSS: Низкий

ELSA-2025-14997

2 месяца назад

ELSA-2025-14997: httpd security update (MODERATE)

EPSS: Низкий

CVE-2024-47252

5 месяцев назад

Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

5 месяцев назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

5 месяцев назад

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

5 месяцев назад

Apache HTTP Server: mod_ssl error log variable escaping

CVSS3: 7.5

EPSS: Низкий

CVE-2024-47252

5 месяцев назад

Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP ...

CVSS3: 7.5

EPSS: Низкий

ROS-20250929-15

3 месяца назад

Множественные уязвимости httpd

CVSS3: 7.5

EPSS: Низкий

GHSA-2qfr-q5v6-m43q

5 месяцев назад

CVSS3: 7.5

EPSS: Низкий

BDU:2025-08958

больше 1 года назад

Уязвимость функции mod_ssl веб-сервера Apache HTTP Server, позволяющая нарушителю оказать воздействие на целостность защищаемой информации

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
RLSA-2025:15123 Moderate: httpd:2.4 security update			3 месяца назад
ELSA-2025-15123 ELSA-2025-15123: httpd:2.4 security update (MODERATE)			4 месяца назад
SUSE-SU-2025:02685-1 Security update for apache2			5 месяцев назад
SUSE-SU-2025:02684-1 Security update for apache2			5 месяцев назад
SUSE-SU-2025:02683-1 Security update for apache2			5 месяцев назад
SUSE-SU-2025:02682-1 Security update for apache2			5 месяцев назад
SUSE-SU-2025:02565-1 Security update for apache2			5 месяцев назад
RLSA-2025:15095 Moderate: httpd security update			3 месяца назад
RLSA-2025:15023 Moderate: httpd security update			2 месяца назад
ELSA-2025-15095 ELSA-2025-15095: httpd security update (MODERATE)			4 месяца назад
ELSA-2025-15023 ELSA-2025-15023: httpd security update (MODERATE)			4 месяца назад
ELSA-2025-14997 ELSA-2025-14997: httpd security update (MODERATE)			2 месяца назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	5 месяцев назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	5 месяцев назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	5 месяцев назад
CVE-2024-47252 Apache HTTP Server: mod_ssl error log variable escaping	CVSS3: 7.5	0% Низкий	5 месяцев назад
CVE-2024-47252 Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP ...	CVSS3: 7.5	0% Низкий	5 месяцев назад
ROS-20250929-15 Множественные уязвимости httpd	CVSS3: 7.5		3 месяца назад
GHSA-2qfr-q5v6-m43q Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%{varname}x" or "%{varname}c" to log variables provided by mod_ssl such as SSL_TLS_SNI, no escaping is performed by either mod_log_config or mod_ssl and unsanitized data provided by the client may appear in log files.	CVSS3: 7.5	0% Низкий	5 месяцев назад
BDU:2025-08958 Уязвимость функции mod_ssl веб-сервера Apache HTTP Server, позволяющая нарушителю оказать воздействие на целостность защищаемой информации	CVSS3: 7.5	0% Низкий	больше 1 года назад

Уязвимостей на страницу