Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.2.17 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0021
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %{}C format string, which allows remote attackers to cause a denial of service (daemon crash) via a...
Apache Http Server 2.2.17
Apache Http Server 2.2.21
Apache Http Server 2.2.19
Apache Http Server 2.2.18
Apache Http Server 2.2.20
1 Github repository available
NA
CVE-2012-4557
The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request....
Apache Http Server 2.2.13
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.14
Apache Http Server 2.2.19
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.15
Apache Http Server 2.2.20
1 Github repository available
NA
CVE-2012-2687
Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or...
Apache Http Server 2.2.23
Apache Http Server 2.4.1
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.4.0
Apache Http Server 2.2.4
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.8
Apache Http Server 2.2.14
Apache Http Server 2.2.6
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.2.1
15 Github repositories available
NA
CVE-2012-4558
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject...
Apache Http Server 2.2.23
Apache Http Server 2.2
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.8
Apache Http Server 2.2.14
Apache Http Server 2.2.6
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.2.1
Apache Http Server 2.4.1
Apache Http Server 2.4.0
Apache Http Server 2.4.3
Apache Http Server 2.4.2
16 Github repositories available
NA
CVE-2012-3499
Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3)...
Apache Http Server 2.2.23
Apache Http Server 2.2
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.8
Apache Http Server 2.2.14
Apache Http Server 2.2.6
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.2.1
Apache Http Server 2.4.1
Apache Http Server 2.4.0
Apache Http Server 2.4.3
Apache Http Server 2.4.2
17 Github repositories available
9.8
CVSSv3
CVE-2017-3169
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port....
Apache Http Server 2.2.23
Apache Http Server 2.4.1
Apache Http Server 2.4.20
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.31
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.4.12
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.4.23
Apache Http Server 2.4.10
Apache Http Server 2.2.14
Apache Http Server 2.2.24
Apache Http Server 2.2.25
Apache Http Server 2.2.30
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.27
Apache Http Server 2.4.25
Apache Http Server 2.4.18
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.32
Apache Http Server 2.2.29
Apache Http Server 2.2.3
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.4.17
Apache Http Server 2.4.16
Apache Http Server 2.2.26
17 Github repositories available
6.1
CVSSv3
CVE-2016-4975
Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache...
Apache Http Server 2.2.23
Apache Http Server 2.4.1
Apache Http Server 2.4.20
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.31
Apache Http Server 2.2.10
Apache Http Server 2.4.6
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.4.12
Apache Http Server 2.2.4
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.4.3
Apache Http Server 2.4.23
Apache Http Server 2.2.8
Apache Http Server 2.4.4
Apache Http Server 2.4.10
Apache Http Server 2.4.7
Apache Http Server 2.2.14
Apache Http Server 2.2.24
Apache Http Server 2.2.25
Apache Http Server 2.2.6
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.27
Apache Http Server 2.2.9
Apache Http Server 2.4.18
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.29
Apache Http Server 2.2.3
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.4.17
Apache Http Server 2.4.16
Apache Http Server 2.4.9
Apache Http Server 2.2.26
19 Github repositories available
NA
CVE-2011-3639
The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which...
Apache Http Server 2.0.42
Apache Http Server 2.0.58
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.2.13
Apache Http Server 2.0.47
Apache Http Server 2.0.56
Apache Http Server 2.0.50
Apache Http Server 2.0.27
Apache Http Server 2.2.2
Apache Http Server 2.0.12
Apache Http Server 2.0.20
Apache Http Server2.0a9
Apache Http Server 2.2.4
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.55
Apache Http Server 2.2.17
Apache Http Server 2.0.44
Apache Http Server 2.2.16
Apache Http Server 2.0.39
Apache Http Server 2.0.18
Apache Http Server 2.0.25
Apache Http Server 2.2.8
Apache Http Server 2.0.52
Apache Http Server2.0a7
Apache Http Server 2.0.21
Apache Http Server 2.0.53
Apache Http Server 2.0.57
Apache Http Server 2.0.51
Apache Http Server 2.0.33
Apache Http Server 2.0.17
Apache Http Server 2.0.63
Apache Http Server 2.2.14
Apache Http Server 2.0.22
Apache Http Server 2.0.15
Apache Http Server 2.0.41
Apache Http Server 2.0.49
Apache Http Server 2.0.29
Apache Http Server 2.0.26
Apache Http Server2.0a8
Apache Http Server 2.0.23
Apache Http Server2.0a2
Apache Http Server 2.0.61
Apache Http Server 2.2.6
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server2.0a5
Apache Http Server2.0a3
Apache Http Server 2.0.38
Apache Http Server 2.0.19
Apache Http Server 2.2.9
Apache Http Server2.0a4
Apache Http Server 2.0.24
Apache Http Server 2.0.48
Apache Http Server 2.0.16
Apache Http Server 2.0.45
Apache Http Server 2.2.12
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server2.0a6
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.54
Apache Http Server 2.2.15
Apache Http Server 2.0.43
Apache Http Server 2.0.11
Apache Http Server 2.0.59
Apache Http Server 2.0.14
Apache Http Server 2.0.28
Apache Http Server 2.0.31
Apache Http Server2.0a1
Apache Http Server 2.0.30
Apache Http Server 2.2.1
Apache Http Server 2.0.13
1 EDB exploit available
14 Github repositories available
NA
CVE-2013-5704
The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue...
Apache Http Server 2.2.23
Apache Http Server 2.4.1
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.10
Apache Http Server 2.4.6
Apache Http Server 2.2.13
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.2.17
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.4.3
Apache Http Server 2.2.8
Apache Http Server 2.4.4
Apache Http Server 2.4.10
Apache Http Server 2.4.7
Apache Http Server 2.2.14
Apache Http Server 2.2.24
Apache Http Server 2.2.25
Apache Http Server 2.2.6
Apache Http Server 2.2.22
Apache Http Server 2.2.19
Apache Http Server 2.2.27
Apache Http Server 2.2.9
Apache Http Server 2.2.18
Apache Http Server 2.2.12
Apache Http Server 2.2.3
Apache Http Server 2.4.2
Apache Http Server 2.2.15
Apache Http Server 2.2.20
Apache Http Server 2.4.9
Apache Http Server 2.2.26
Apache Http Server 2.2.5
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Eus 7.3
Redhat Enterprise Linux Eus 7.4
Redhat Enterprise Linux Eus 7.5
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Eus 7.6
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Jboss Enterprise Web Server 3.0.0
Redhat Jboss Enterprise Web Server 2.0.0
Oracle Enterprise Manager Ops Center 12.2.1
Oracle Http Server 12.1.3.0
Oracle Enterprise Manager Ops Center 12.3.0
Oracle Enterprise Manager Ops Center 12.2.0
Oracle Enterprise Manager Ops Center 12.1.4
Oracle Http Server 12.1.2.0
Oracle Solaris 11.2
Oracle Http Server 11.1.1.7.0
Oracle Linux 6
Oracle Enterprise Manager Ops Center
Oracle Http Server 10.1.3.5.0
Apple Mac Os X
Apple Mac Os X Server
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
9 Github repositories available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-4518
malicious code
validation
CVE-2023-42916
template injection
CVE-2023-41266
CVE-2023-43089
CVE-2023-5995
CVE-2023-21746
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon