The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Apache httpd

Apache httpd: information disclosure via URL Normalization Consecutive Slashes
An attacker can bypass access restrictions to data via URL Normalization Consecutive Slashes of Apache httpd, in order to obtain sensitive information...
CERTFR-2019-AVI-141, cpuapr2020, CVE-2019-0220, DLA-1748-1, DSA-4422-1, FEDORA-2019-a4ed7400f4, HPESBUX03950, ibm10880413, ibm10883380, ibm10885680, openSUSE-SU-2019:1190-1, openSUSE-SU-2019:1209-1, openSUSE-SU-2019:1258-1, RHSA-2019:2343-01, RHSA-2019:3436-01, RHSA-2019:4126-01, SUSE-SU-2019:0873-1, SUSE-SU-2019:0878-1, SUSE-SU-2019:0888-1, SUSE-SU-2019:0888-2, SUSE-SU-2019:0889-1, SYMSA16056, USN-3937-1, VIGILANCE-VUL-28917
Apache httpd mod_auth_digest: privilege escalation via Race Condition
An attacker can bypass restrictions via Race Condition of Apache httpd mod_auth_digest, in order to escalate his privileges...
CERTFR-2019-AVI-141, cpuapr2020, CVE-2019-0217, DLA-1748-1, DSA-4422-1, FEDORA-2019-a4ed7400f4, HPESBUX03950, openSUSE-SU-2019:1190-1, openSUSE-SU-2019:1209-1, openSUSE-SU-2019:1258-1, RHSA-2019:2343-01, RHSA-2019:3436-01, RHSA-2019:4126-01, SUSE-SU-2019:0873-1, SUSE-SU-2019:0878-1, SUSE-SU-2019:0888-1, SUSE-SU-2019:0888-2, SUSE-SU-2019:0889-1, USN-3937-1, USN-3937-2, VIGILANCE-VUL-28916
Apache httpd mod_ssl: privilege escalation via Per-location Client Certificate
An attacker can bypass restrictions via Per-location Client Certificate of Apache httpd mod_ssl, in order to escalate his privileges...
bulletinapr2019, CERTFR-2019-AVI-141, cpuapr2020, CVE-2019-0215, FEDORA-2019-a4ed7400f4, VIGILANCE-VUL-28915
Apache httpd: privilege escalation via Scoreboard
An attacker can bypass restrictions via Scoreboard of Apache httpd, in order to escalate his privileges...
CERTFR-2019-AVI-141, cpuapr2020, cpujul2019, CVE-2019-0211, DSA-4422-1, FEDORA-2019-a4ed7400f4, HPESBUX03950, ibm10880413, ibm10885680, JSA11023, openSUSE-SU-2019:1190-1, openSUSE-SU-2019:1209-1, openSUSE-SU-2019:1258-1, RHSA-2019:0746-01, SSA:2019-096-01, SUSE-SU-2019:0873-1, SUSE-SU-2019:0878-1, SUSE-SU-2019:0888-1, SUSE-SU-2019:0888-2, SUSE-SU-2019:0889-1, SYMSA16056, Synology-SA-19:14, USN-3937-1, VIGILANCE-VUL-28914
Apache httpd mod_http2: denial of service via H2Upgrade
An attacker can trigger a fatal error via mod_http2 H2Upgrade of Apache httpd, in order to trigger a denial of service...
CERTFR-2019-AVI-141, cpuapr2020, CVE-2019-0197, HPESBUX03950, ibm10883380, openSUSE-SU-2019:1190-1, openSUSE-SU-2019:1209-1, openSUSE-SU-2019:1258-1, SUSE-SU-2019:0873-1, SUSE-SU-2019:0878-1, SUSE-SU-2019:0888-1, SUSE-SU-2019:0888-2, SUSE-SU-2019:0889-1, USN-4113-1, USN-4113-2, VIGILANCE-VUL-28913
Apache httpd mod_http2: denial of service via String Compare
An attacker can trigger a fatal error via mod_http2 String Compare of Apache httpd, in order to trigger a denial of service...
CERTFR-2019-AVI-141, cpuapr2020, CVE-2019-0196, DSA-4422-1, FEDORA-2019-08e57d15fd, HPESBUX03950, ibm10883380, openSUSE-SU-2019:1190-1, openSUSE-SU-2019:1209-1, openSUSE-SU-2019:1258-1, SUSE-SU-2019:0873-1, SUSE-SU-2019:0878-1, SUSE-SU-2019:0888-1, SUSE-SU-2019:0888-2, SUSE-SU-2019:0889-1, USN-3937-1, VIGILANCE-VUL-28912
Apache httpd: infinite loop via mod_ssl OpenSSL 1.1.1 Client Renegotiations
An attacker can trigger an infinite loop via mod_ssl OpenSSL 1.1.1 Client Renegotiations of Apache httpd, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-031, CVE-2019-0190, ibm10872490, SSA:2019-022-01, VIGILANCE-VUL-28331
Apache httpd: privilege escalation via mod_session_cookie Ignored Expiry Time
An attacker can bypass restrictions via mod_session_cookie Ignored Expiry Time of Apache httpd, in order to escalate his privileges...
bulletinapr2019, CERTFR-2019-AVI-031, CVE-2018-17199, DLA-1647-1, DSA-4422-1, HPESBUX03950, ibm10869064, ibm10872490, ibm10876972, openSUSE-SU-2019:0296-1, openSUSE-SU-2019:0305-1, RHSA-2019:4126-01, RHSA-2020:1121-01, SSA:2019-022-01, SUSE-SU-2019:0498-1, SUSE-SU-2019:0504-1, USN-3937-1, VIGILANCE-VUL-28330
Apache httpd: denial of service via mod_http2
An attacker can trigger a fatal error via mod_http2 of Apache httpd, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-031, CVE-2018-17189, DSA-4422-1, HPESBUX03950, ibm10872490, openSUSE-SU-2019:0296-1, openSUSE-SU-2019:0305-1, RHSA-2019:4126-01, SSA:2019-022-01, SUSE-SU-2019:0498-1, SUSE-SU-2019:0504-1, USN-3937-1, VIGILANCE-VUL-28329
Apache httpd: denial of service via HTTP/2 SETTINGS
An attacker can generate a fatal error via HTTP/2 SETTINGS of Apache httpd, in order to trigger a denial of service...
bulletinjan2019, CERTFR-2018-AVI-490, CVE-2018-11763, ibm10735045, openSUSE-SU-2018:3185-1, openSUSE-SU-2018:3713-1, openSUSE-SU-2019:0084-1, openSUSE-SU-2019:1547-1, openSUSE-SU-2019:1814-1, RHSA-2018:3558-01, SUSE-SU-2018:3101-1, SUSE-SU-2018:3572-1, SUSE-SU-2018:3582-1, SUSE-SU-2018:3582-2, USN-3783-1, VIGILANCE-VUL-27316, ZDI-18-1369
Our database contains other pages. You can request a free trial to read them.

Display information about Apache httpd: