VulnerableCode Package Details - pkg:rpm/redhat/httpd@2.2.15-15.el6_2?arch=1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/httpd@2.2.15-15.el6_2?arch=1

Essentials
History (5)

purl	pkg:rpm/redhat/httpd@2.2.15-15.el6_2?arch=1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	9.6

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-5yez-d5nj-q7eq Aliases: CVE-2011-3607	An integer overflow flaw was found which, when the mod_setenvif module is enabled, could allow local users to gain privileges via a .htaccess file.	There are no reported fixed by versions.
VCID-d4rc-pnv5-6uc8 Aliases: CVE-2012-0053	A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose "httpOnly" cookies when no custom ErrorDocument is specified.	There are no reported fixed by versions.
VCID-gu44-7hkr-muae Aliases: CVE-2011-4317	An additional exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker.	There are no reported fixed by versions.
VCID-xa3c-7qgs-5bgf Aliases: CVE-2011-3639	httpd: http 0.9 request bypass of the reverse proxy vulnerability CVE-2011-3368 fix	There are no reported fixed by versions.
VCID-ym93-sxb8-fkdm Aliases: CVE-2012-0031	A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:56:13.165844+00:00	RedHat Importer	Affected by	VCID-xa3c-7qgs-5bgf	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3639.json	38.0.0
2026-04-01T14:56:13.011319+00:00	RedHat Importer	Affected by	VCID-5yez-d5nj-q7eq	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json	38.0.0
2026-04-01T14:56:10.228560+00:00	RedHat Importer	Affected by	VCID-gu44-7hkr-muae	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4317.json	38.0.0
2026-04-01T14:55:59.040655+00:00	RedHat Importer	Affected by	VCID-ym93-sxb8-fkdm	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json	38.0.0
2026-04-01T14:55:57.583563+00:00	RedHat Importer	Affected by	VCID-d4rc-pnv5-6uc8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json	38.0.0