Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache libapreq2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-12412
A flaw in the libapreq2 v2.07 to v2.13 multipart parser can deference a null pointer leading to a process crash. A remote attacker could send a request causing a process crash which could lead to a denial of service attack.
Apache Libapreq2
5
CVSSv2
CVE-2006-0042
Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) prior to 2.07 allows remote malicious users to cause a denial of service (CPU consumption) via unknown attack vectors that result in quadratic computation...
Apache Libapreq2
Debian Debian Linux 3.0
Debian Debian Linux 3.1
NA
CVE-2022-22728
A flaw in Apache libapreq2 versions 2.16 and previous versions could cause a buffer overflow while processing multipart form uploads. A remote attacker could send a request causing a process crash which could lead to a denial of service attack.
Apache Libapreq2
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2009-0023
The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apache APR-util prior to 1.3.5 allows remote malicious users to cause a denial of service (daemon crash) via crafted input involving (1) a .htaccess file used with the Apache HTTP Server, (2) the SVNMasterURI dire...
Apache Apr-util 1.3.3
Apache Apr-util 1.2.7
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util 1.1.0
Apache Apr-util 0.9.1
Apache Apr-util
Apache Apr-util 1.3.1
Apache Apr-util 0.9.2
Apache Apr-util 1.3.2
Apache Apr-util 1.1.1
Apache Apr-util 1.1.2
Apache Apr-util 1.2.6
Apache Apr-util 1.0.1
Apache Apr-util 0.9.5
Apache Http Server
6.4
CVSSv2
CVE-2009-1956
Off-by-one error in the apr_brigade_vprintf function in Apache APR-util prior to 1.3.5 on big-endian platforms allows remote malicious users to obtain sensitive information or cause a denial of service (application crash) via crafted input.
Apache Apr-util
Apache Http Server
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
5
CVSSv2
CVE-2009-1955
The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util prior to 1.3.7, as used in the mod_dav and mod_dav_svn modules in the Apache HTTP Server, allows remote malicious users to cause a denial of service (memory consumption) via a crafted XML document...
Apache Apr-util
Apple Mac Os X
Suse Linux Enterprise Server 9
Debian Debian Linux 4.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 11
Fedoraproject Fedora 10
Fedoraproject Fedora 9
Oracle Http Server -
Apache Http Server
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started