Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/74576?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "type": "ebuild", "namespace": "www-servers", "name": "apache", "version": "2.2.22-r1", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "2.2.25", "latest_non_vulnerable_version": "2.4.62", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3732?format=api", "vulnerability_id": "VCID-53da-z9gn-n7f2", "summary": "A flaw was found in mod_log_config. If the '%{cookiename}C' log format string is in use, a remote attacker could send a specific cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0021.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0021.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0021", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.9689", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96858", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96866", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96871", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96875", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96884", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96885", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96888", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.3296", "scoring_system": "epss", "scoring_elements": "0.96889", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0021" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0021", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0021" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=785065", "reference_id": "785065", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=785065" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0021.json", "reference_id": "CVE-2012-0021", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0021.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2012-0021" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-53da-z9gn-n7f2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3722?format=api", "vulnerability_id": "VCID-56kt-8bg6-zbcj", "summary": "A flaw was found in the handling of requests by mod_cache (2.2) and mod_dav (2.0 and 2.2). A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon \"CacheIgnoreURLSessionIdentifiers\" directive, introduced in version 2.2.14, is used.", "references": [ { "reference_url": "http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav" }, { "reference_url": "http://httpd.apache.org/security/vulnerabilities_22.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://httpd.apache.org/security/vulnerabilities_22.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html" }, { "reference_url": "http://marc.info/?l=apache-announce&m=128009718610929&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=apache-announce&m=128009718610929&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=129190899612998&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=129190899612998&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=133355494609819&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=bugtraq&m=133355494609819&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1452", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13871", "scoring_system": "epss", "scoring_elements": "0.94299", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.13871", "scoring_system": "epss", "scoring_elements": "0.943", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.94674", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.94678", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.9469", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.94694", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.94698", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.9468", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.15663", "scoring_system": "epss", "scoring_elements": "0.94666", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1452" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452" }, { "reference_url": "http://secunia.com/advisories/42367", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/42367" }, { "reference_url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=49246", "reference_id": "", "reference_type": "", "scores": [], "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=49246" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395" }, { "reference_url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341" }, { "reference_url": "http://support.apple.com/kb/HT4581", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4581" }, { "reference_url": "http://ubuntu.com/usn/usn-1021-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://ubuntu.com/usn/usn-1021-1" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0659.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0659.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/2218", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/2218" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/3064", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/3064" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0291", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0291" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=618189", "reference_id": "618189", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=618189" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-1452.json", "reference_id": "CVE-2010-1452", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-1452.json" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1452", "reference_id": "CVE-2010-1452", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1452" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0659", "reference_id": "RHSA-2010:0659", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0659" }, { "reference_url": "https://usn.ubuntu.com/1021-1/", "reference_id": "USN-1021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1021-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2010-1452" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-56kt-8bg6-zbcj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3730?format=api", "vulnerability_id": "VCID-5yez-d5nj-q7eq", "summary": "An integer overflow flaw was found which, when the mod_setenvif module is enabled, could allow local users to gain privileges via a .htaccess file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3607", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47455", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47395", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47429", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.4745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47399", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47454", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47473", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47448", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3607" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=769844", "reference_id": "769844", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=769844" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3607.json", "reference_id": "CVE-2011-3607", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3607.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt", "reference_id": "CVE-2011-4415;CVE-2011-3607", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt" }, { "reference_url": "http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/", "reference_id": "CVE-2011-4415;CVE-2011-3607", "reference_type": "exploit", "scores": [], "url": "http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2011-3607" ], "risk_score": 4.2, "exploitability": "2.0", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5yez-d5nj-q7eq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3728?format=api", "vulnerability_id": "VCID-6vze-zk58-7yep", "summary": "A flaw was found when mod_proxy_ajp is used together with mod_proxy_balancer. Given a specific configuration, a remote attacker could send certain malformed HTTP requests, putting a backend server into an error state until the retry timeout expired. This could lead to a temporary denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3348.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3348.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3348", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96969", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.9694", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96947", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96952", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96955", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96963", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96964", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96967", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.34026", "scoring_system": "epss", "scoring_elements": "0.96968", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3348" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3348", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3348" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=736690", "reference_id": "736690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=736690" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3348.json", "reference_id": "CVE-2011-3348", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3348.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1391", "reference_id": "RHSA-2011:1391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1259-1/", "reference_id": "USN-1259-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1259-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2011-3348" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6vze-zk58-7yep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3725?format=api", "vulnerability_id": "VCID-cn4b-1w42-gyda", "summary": "An information disclosure flaw was found in mod_proxy_http in version 2.2.9 only, on Unix platforms. Under certain timeout conditions, the server could return a response intended for another user. Only those configurations which trigger the use of proxy worker pools are affected. There was no vulnerability on earlier versions, as proxy pools were not yet introduced. The simplest workaround is to globally configure:\nSetEnv proxy-nokeepalive 1", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2791.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2791.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2791", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83967", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83897", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83977", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83971", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83912", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83928", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83931", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83954", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.83961", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2791" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2791", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2791" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/60883", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/60883" }, { "reference_url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r064df0985779b7ee044d3120d71ba59750427cf53f57ba3384e3773f%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r064df0985779b7ee044d3120d71ba59750427cf53f57ba3384e3773f%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2010/07/30/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2010/07/30/1" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0659.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0659.html" }, { "reference_url": "http://www.securityfocus.com/bid/42102", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/42102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=617523", "reference_id": "617523", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=617523" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-2791.json", "reference_id": "CVE-2010-2791", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-2791.json" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2791", "reference_id": "CVE-2010-2791", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2791" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0659", "reference_id": "RHSA-2010:0659", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0659" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2010-2791" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cn4b-1w42-gyda" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3734?format=api", "vulnerability_id": "VCID-d4rc-pnv5-6uc8", "summary": "A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose \"httpOnly\" cookies when no custom ErrorDocument is specified.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0053", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.98088", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.98081", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.98084", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.981", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.98093", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.55955", "scoring_system": "epss", "scoring_elements": "0.98099", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0053" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=785069", "reference_id": "785069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=785069" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0053.json", "reference_id": "CVE-2012-0053", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0053.json" }, { "reference_url": "https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08", "reference_id": "CVE-2012-0053;OSVDB-78556", "reference_type": "exploit", "scores": [], "url": "https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html", "reference_id": "CVE-2012-0053;OSVDB-78556", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2012-0053" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d4rc-pnv5-6uc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3735?format=api", "vulnerability_id": "VCID-ese4-47tg-efbw", "summary": "Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0883", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.4166", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41584", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41671", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41698", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41626", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41676", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41684", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41707", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00197", "scoring_system": "epss", "scoring_elements": "0.41674", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0883" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=813559", "reference_id": "813559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=813559" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0883.json", "reference_id": "CVE-2012-0883", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0883.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1594", "reference_id": "RHSA-2012:1594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1594" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2012-0883" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ese4-47tg-efbw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3731?format=api", "vulnerability_id": "VCID-gu44-7hkr-muae", "summary": "An additional exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4317.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4317.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4317", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99197", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99193", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99195", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99203", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99201", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.81918", "scoring_system": "epss", "scoring_elements": "0.99202", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4317" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=756483", "reference_id": "756483", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=756483" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-4317.json", "reference_id": "CVE-2011-4317", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-4317.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36352.txt", "reference_id": "CVE-2011-4317;OSVDB-77310", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36352.txt" }, { "reference_url": "https://www.securityfocus.com/bid/50802/info", "reference_id": "CVE-2011-4317;OSVDB-77310", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/50802/info" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2011-4317" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gu44-7hkr-muae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3727?format=api", "vulnerability_id": "VCID-kkfv-4jd1-bqdm", "summary": "A flaw was found in the way the Apache HTTP Server handled Range HTTP headers. A remote attacker could use this flaw to cause httpd to use an excessive amount of memory and CPU time via HTTP requests with a specially-crafted Range header. This could be used in a denial of service attack. Advisory: CVE-2011-3192.txt", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99604", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99605", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99606", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99607", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99608", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3192" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928", "reference_id": "732928", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3192.json", "reference_id": "CVE-2011-3192", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3192.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c", "reference_id": "CVE-2014-5329;OSVDB-74721;CVE-2011-3192", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl", "reference_id": "CVE-2014-5329;OSVDB-74721;CVE-2011-3192", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1245", "reference_id": "RHSA-2011:1245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1294", "reference_id": "RHSA-2011:1294", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1294" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1300", "reference_id": "RHSA-2011:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1329", "reference_id": "RHSA-2011:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1330", "reference_id": "RHSA-2011:1330", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1330" }, { "reference_url": "https://usn.ubuntu.com/1199-1/", "reference_id": "USN-1199-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1199-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2011-3192" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kkfv-4jd1-bqdm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3719?format=api", "vulnerability_id": "VCID-pdtf-5zv7-2qaf", "summary": "mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0408.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0408.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0408", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96722", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96691", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96701", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96703", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96707", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96715", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96717", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.96719", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.30734", "scoring_system": "epss", "scoring_elements": "0.9672", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=569905", "reference_id": "569905", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=569905" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-0408.json", "reference_id": "CVE-2010-0408", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-0408.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0168", "reference_id": "RHSA-2010:0168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0396", "reference_id": "RHSA-2010:0396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0396" }, { "reference_url": "https://usn.ubuntu.com/908-1/", "reference_id": "USN-908-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/908-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2010-0408" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pdtf-5zv7-2qaf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3729?format=api", "vulnerability_id": "VCID-prd8-51a5-pygj", "summary": "An exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker. No update of 1.3 will be released.\nPatches will be published to https://archive.apache.org/dist/httpd/patches/apply_to_1.3.42/", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3368", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99065", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99054", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99055", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99059", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99062", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99063", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.79136", "scoring_system": "epss", "scoring_elements": "0.99064", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3368" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740045", "reference_id": "740045", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740045" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3368.json", "reference_id": "CVE-2011-3368", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3368.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py", "reference_id": "CVE-2011-3368;OSVDB-76079", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1391", "reference_id": "RHSA-2011:1391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1392", "reference_id": "RHSA-2011:1392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1259-1/", "reference_id": "USN-1259-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1259-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2011-3368" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-prd8-51a5-pygj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3721?format=api", "vulnerability_id": "VCID-wycq-jwzz-q7hf", "summary": "A flaw in the core subrequest process code was fixed, to always provide a shallow copy of the headers_in array to the subrequest, instead of a pointer to the parent request's array as it had for requests without request bodies. This meant all modules such as mod_headers which may manipulate the input headers for a subrequest would poison the parent request in two ways, one by modifying the parent request, which might not be intended, and second by leaving pointers to modified header fields in memory allocated to the subrequest scope, which could be freed before the main request processing was finished, resulting in a segfault or in revealing data from another request on threaded servers, such as the worker or winnt MPMs.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85501", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85428", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.8544", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.8546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85463", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85484", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85492", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85506", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02554", "scoring_system": "epss", "scoring_elements": "0.85504", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=570171", "reference_id": "570171", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=570171" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-0434.json", "reference_id": "CVE-2010-0434", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-0434.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0168", "reference_id": "RHSA-2010:0168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0175", "reference_id": "RHSA-2010:0175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0396", "reference_id": "RHSA-2010:0396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0396" }, { "reference_url": "https://usn.ubuntu.com/908-1/", "reference_id": "USN-908-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/908-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2010-0434" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wycq-jwzz-q7hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3733?format=api", "vulnerability_id": "VCID-ym93-sxb8-fkdm", "summary": "A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0031", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78884", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78837", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78843", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78872", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78854", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78879", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78886", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78909", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01196", "scoring_system": "epss", "scoring_elements": "0.78893", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0031" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=773744", "reference_id": "773744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=773744" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt", "reference_id": "CVE-2012-0031", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0031.json", "reference_id": "CVE-2012-0031", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0031.json" }, { "reference_url": "http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/", "reference_id": "CVE-2012-0031", "reference_type": "exploit", "scores": [], "url": "http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74576?format=api", "purl": "pkg:ebuild/www-servers/apache@2.2.22-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" } ], "aliases": [ "CVE-2012-0031" ], "risk_score": 4.2, "exploitability": "2.0", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ym93-sxb8-fkdm" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1" }