{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","type":"deb","namespace":"debian","name":"apache2","version":"0","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.0.36","latest_non_vulnerable_version":"2.4.67-2","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/19848?format=json","vulnerability_id":"VCID-49h7-esve-m3aw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40898.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-40898.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-40898","reference_id":"","reference_type":"","scores":[{"value":"0.00735","scoring_system":"epss","scoring_elements":"0.73228","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-40898"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2298648","reference_id":"2298648","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2298648"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2024-40898.json","reference_id":"CVE-2024-40898","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2024-40898.json"},{"reference_url":"https://security.gentoo.org/glsa/202409-31","reference_id":"GLSA-202409-31","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-31"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6928","reference_id":"RHSA-2024:6928","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6928"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-07-20T03:55:31Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2024-40898"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-49h7-esve-m3aw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175413?format=json","vulnerability_id":"VCID-4x4s-8qeu-13h3","summary":"A crash in ErrorDocument handling was found. If ErrorDocument 400 was configured pointing to a local URL-path with the INCLUDES filter active, a NULL dereference would occur when handling the error, causing the child process to crash. This issue affected the 2.4.12 release only.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0253.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0253.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0253","reference_id":"","reference_type":"","scores":[{"value":"0.10755","scoring_system":"epss","scoring_elements":"0.93505","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0253"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243891","reference_id":"1243891","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243891"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2015-0253.json","reference_id":"CVE-2015-0253","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2015-0253.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:1666","reference_id":"RHSA-2015:1666","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:1666"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2015-0253"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4x4s-8qeu-13h3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175379?format=json","vulnerability_id":"VCID-6x9n-8arm-3kbk","summary":"A flaw was found with within mod_isapi which would attempt to unload the ISAPI dll when it encountered various error states. This could leave the callbacks in an undefined state and result in a segfault. On Windows platforms using mod_isapi, a remote attacker could send a malicious request to trigger this issue, and as win32 MPM runs only one process, this would result in a denial of service, and potentially allow arbitrary code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0425","reference_id":"","reference_type":"","scores":[{"value":"0.86822","scoring_system":"epss","scoring_elements":"0.99447","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0425"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-0425.json","reference_id":"CVE-2010-0425","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-0425.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/11650.c","reference_id":"CVE-2010-0425;OSVDB-62674","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/11650.c"},{"reference_url":"http://www.senseofsecurity.com.au/advisories/SOS-10-002","reference_id":"CVE-2010-0425;OSVDB-62674","reference_type":"exploit","scores":[],"url":"http://www.senseofsecurity.com.au/advisories/SOS-10-002"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2010-0425"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6x9n-8arm-3kbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175420?format=json","vulnerability_id":"VCID-7xcn-c8p4-j7ec","summary":"Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13938.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13938","reference_id":"","reference_type":"","scores":[{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40378","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13938"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970006","reference_id":"1970006","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1970006"},{"reference_url":"https://security.archlinux.org/AVG-2054","reference_id":"AVG-2054","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2054"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2020-13938.json","reference_id":"CVE-2020-13938","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2020-13938.json"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2020-13938"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7xcn-c8p4-j7ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175383?format=json","vulnerability_id":"VCID-8bk7-w7fd-8bfv","summary":"An information disclosure flaw was found in mod_proxy_http in versions 2.2.9 through 2.2.15, 2.3.4-alpha and 2.3.5-alpha. Under certain timeout conditions, the server could return a response intended for another user. Only Windows, Netware and OS2 operating systems are affected. Only those configurations which trigger the use of proxy worker pools are affected. There was no vulnerability on earlier versions, as proxy pools were not yet introduced.\nThe simplest workaround is to globally configure;\nSetEnv proxy-nokeepalive 1","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2068","reference_id":"","reference_type":"","scores":[{"value":"0.08537","scoring_system":"epss","scoring_elements":"0.92572","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2068"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-2068.json","reference_id":"CVE-2010-2068","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-2068.json"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2010-2068"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8bk7-w7fd-8bfv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/101130?format=json","vulnerability_id":"VCID-8fr4-tnpf-aufk","summary":"Server-Side Request Forgery (SSRF) vulnerability \n\n in Apache HTTP Server on Windows \n\nwith AllowEncodedSlashes On and MergeSlashes Off  allows to potentially leak NTLM \nhashes to a malicious server via SSRF and malicious requests or content\n\nUsers are recommended to upgrade to version 2.4.66, which fixes the issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59775.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59775.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-59775","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-59775"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2419141","reference_id":"2419141","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2419141"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2025-59775.json","reference_id":"CVE-2025-59775","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2025-59775.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5156","reference_id":"RHSA-2026:5156","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5156"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-05T19:28:08Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2025-59775"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8fr4-tnpf-aufk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175394?format=json","vulnerability_id":"VCID-8qcw-mekw-buh6","summary":"Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0883","reference_id":"","reference_type":"","scores":[{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41564","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0883"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=813559","reference_id":"813559","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=813559"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-0883.json","reference_id":"CVE-2012-0883","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-0883.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:1594","reference_id":"RHSA-2012:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:1594"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2012-0883"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8qcw-mekw-buh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/11797?format=json","vulnerability_id":"VCID-92ma-xf8z-sudp","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28330.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28330.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28330","reference_id":"","reference_type":"","scores":[{"value":"0.00488","scoring_system":"epss","scoring_elements":"0.6591","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28330"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2095000","reference_id":"2095000","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2095000"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2022-28330.json","reference_id":"CVE-2022-28330","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2022-28330.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8841","reference_id":"RHSA-2022:8841","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8841"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2022-28330"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-92ma-xf8z-sudp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4250?format=json","vulnerability_id":"VCID-ern3-8585-c7hn","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9789.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9789.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9789","reference_id":"","reference_type":"","scores":[{"value":"0.10122","scoring_system":"epss","scoring_elements":"0.93264","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9789"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:N/A:P"},{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1470750","reference_id":"1470750","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1470750"},{"reference_url":"https://security.archlinux.org/ASA-201707-15","reference_id":"ASA-201707-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-15"},{"reference_url":"https://security.archlinux.org/AVG-350","reference_id":"AVG-350","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-350"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2017-9789.json","reference_id":"CVE-2017-9789","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2017-9789.json"},{"reference_url":"https://security.gentoo.org/glsa/201710-32","reference_id":"GLSA-201710-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-32"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2017-9789"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ern3-8585-c7hn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37708?format=json","vulnerability_id":"VCID-f63t-rzds-xkbk","summary":"SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content \nUsers are recommended to upgrade to version 2.4.60 which fixes this issue.  Note: Existing configurations that access UNC paths will have to configure new directive \"UNCList\" to allow access during request processing.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-38472.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-38472.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38472","reference_id":"","reference_type":"","scores":[{"value":"0.9067","scoring_system":"epss","scoring_elements":"0.99637","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38472"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2295011","reference_id":"2295011","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2295011"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2024-38472.json","reference_id":"CVE-2024-38472","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2024-38472.json"},{"reference_url":"https://security.gentoo.org/glsa/202409-31","reference_id":"GLSA-202409-31","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-31"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6928","reference_id":"RHSA-2024:6928","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6928"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-09T15:16:36Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2024-38472"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f63t-rzds-xkbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/19824?format=json","vulnerability_id":"VCID-jy4d-rc9m-6be4","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39884.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-39884.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-39884","reference_id":"","reference_type":"","scores":[{"value":"0.00246","scoring_system":"epss","scoring_elements":"0.48114","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-39884"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39884","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39884"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2295761","reference_id":"2295761","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2295761"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/07/17/6","reference_id":"6","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-05T13:54:22Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/07/17/6"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2024-39884.json","reference_id":"CVE-2024-39884","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2024-39884.json"},{"reference_url":"https://security.gentoo.org/glsa/202409-31","reference_id":"GLSA-202409-31","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-31"},{"reference_url":"https://security.netapp.com/advisory/ntap-20240712-0002/","reference_id":"ntap-20240712-0002","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-05T13:54:22Z/"}],"url":"https://security.netapp.com/advisory/ntap-20240712-0002/"},{"reference_url":"https://usn.ubuntu.com/6885-1/","reference_id":"USN-6885-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6885-1/"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-05T13:54:22Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23900?format=json","purl":"pkg:deb/debian/apache2@2.4.61-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.61-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2024-39884"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jy4d-rc9m-6be4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210524?format=json","vulnerability_id":"VCID-kh4u-tb31-9yfm","summary":"Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4110","reference_id":"","reference_type":"","scores":[{"value":"0.17318","scoring_system":"epss","scoring_elements":"0.95191","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4110"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/28365.txt","reference_id":"CVE-2006-4110;OSVDB-27913","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/28365.txt"},{"reference_url":"https://www.securityfocus.com/bid/19447/info","reference_id":"CVE-2006-4110;OSVDB-27913","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/19447/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2006-4110"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kh4u-tb31-9yfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/27339?format=json","vulnerability_id":"VCID-kps1-3695-ekc5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23918.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23918.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23918","reference_id":"","reference_type":"","scores":[{"value":"0.01123","scoring_system":"epss","scoring_elements":"0.78673","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23918"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135737","reference_id":"1135737","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135737"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2465304","reference_id":"2465304","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2465304"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52577.py","reference_id":"CVE-2026-23918","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52577.py"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2026-23918.json","reference_id":"CVE-2026-23918","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2026-23918.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:13938","reference_id":"RHSA-2026:13938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:13938"},{"reference_url":"https://usn.ubuntu.com/8239-1/","reference_id":"USN-8239-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8239-1/"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T15:11:00Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23925?format=json","purl":"pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23924?format=json","purl":"pkg:deb/debian/apache2@2.4.66-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2026-23918"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kps1-3695-ekc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/25578?format=json","vulnerability_id":"VCID-n1zq-dftj-u7e7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54090.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54090.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-54090","reference_id":"","reference_type":"","scores":[{"value":"0.00763","scoring_system":"epss","scoring_elements":"0.73827","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-54090"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2383014","reference_id":"2383014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2383014"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2025-54090.json","reference_id":"CVE-2025-54090","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2025-54090.json"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:58:58Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23919?format=json","purl":"pkg:deb/debian/apache2@2.4.65-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.65-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2025-54090"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n1zq-dftj-u7e7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210560?format=json","vulnerability_id":"VCID-n6yv-mv6r-73b1","summary":"The default configuration of the Apache HTTP Server on Apple OS X before 10.10.4 does not enable the mod_hfs_apple module, which allows remote attackers to bypass HTTP authentication via a crafted URL.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3675","reference_id":"","reference_type":"","scores":[{"value":"0.00317","scoring_system":"epss","scoring_elements":"0.55234","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3675"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2015-3675"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n6yv-mv6r-73b1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210563?format=json","vulnerability_id":"VCID-pnae-cxht-ebca","summary":"A regression was found in the Red Hat Enterprise Linux 6.9 version of httpd 2.2.15-60, causing comments in the \"Allow\" and \"Deny\" configuration lines to be parsed incorrectly. A web administrator could unintentionally allow any client to access a restricted HTTP resource.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12171.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12171.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12171","reference_id":"","reference_type":"","scores":[{"value":"0.01543","scoring_system":"epss","scoring_elements":"0.81787","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12171"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1493056","reference_id":"1493056","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1493056"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2972","reference_id":"RHSA-2017:2972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2972"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2017-12171"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pnae-cxht-ebca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/155374?format=json","vulnerability_id":"VCID-qsuf-kwzw-ukh8","summary":"It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration \"require all denied\", these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue only affects Apache 2.4.49 and Apache 2.4.50 and not earlier versions.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42013.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42013.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42013","reference_id":"","reference_type":"","scores":[{"value":"0.9441","scoring_system":"epss","scoring_elements":"0.99979","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42013"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/1","reference_id":"1","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/09/1","reference_id":"1","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/09/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/16/1","reference_id":"1","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/16/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/2","reference_id":"2","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2011900","reference_id":"2011900","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2011900"},{"reference_url":"https://security.gentoo.org/glsa/202208-20","reference_id":"202208-20","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://security.gentoo.org/glsa/202208-20"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/3","reference_id":"3","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/15/3","reference_id":"3","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/15/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/4","reference_id":"4","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/11/4","reference_id":"4","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/11/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/5","reference_id":"5","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/5"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/07/6","reference_id":"6","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/07/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/6","reference_id":"6","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/6"},{"reference_url":"http://packetstormsecurity.com/files/164629/Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html","reference_id":"Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/164629/Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html"},{"reference_url":"https://www.povilaika.com/apache-2-4-50-exploit/","reference_id":"apache-2-4-50-exploit","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://www.povilaika.com/apache-2-4-50-exploit/"},{"reference_url":"http://packetstormsecurity.com/files/167397/Apache-2.4.50-Remote-Code-Execution.html","reference_id":"Apache-2.4.50-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/167397/Apache-2.4.50-Remote-Code-Execution.html"},{"reference_url":"http://packetstormsecurity.com/files/165089/Apache-HTTP-Server-2.4.50-CVE-2021-42013-Exploitation.html","reference_id":"Apache-HTTP-Server-2.4.50-CVE-2021-42013-Exploitation.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/165089/Apache-HTTP-Server-2.4.50-CVE-2021-42013-Exploitation.html"},{"reference_url":"http://packetstormsecurity.com/files/164501/Apache-HTTP-Server-2.4.50-Path-Traversal-Code-Execution.html","reference_id":"Apache-HTTP-Server-2.4.50-Path-Traversal-Code-Execution.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/164501/Apache-HTTP-Server-2.4.50-Path-Traversal-Code-Execution.html"},{"reference_url":"http://packetstormsecurity.com/files/164609/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_id":"Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/164609/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html"},{"reference_url":"http://packetstormsecurity.com/files/164941/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_id":"Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://packetstormsecurity.com/files/164941/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html"},{"reference_url":"https://security.archlinux.org/ASA-202110-1","reference_id":"ASA-202110-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202110-1"},{"reference_url":"https://security.archlinux.org/AVG-2450","reference_id":"AVG-2450","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2450"},{"reference_url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-pathtrv-LAzg68cZ","reference_id":"cisco-sa-apache-httpd-pathtrv-LAzg68cZ","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-pathtrv-LAzg68cZ"},{"reference_url":"https://www.oracle.com/security-alerts/cpuapr2022.html","reference_id":"cpuapr2022.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://www.oracle.com/security-alerts/cpuapr2022.html"},{"reference_url":"https://www.oracle.com/security-alerts/cpujan2022.html","reference_id":"cpujan2022.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://www.oracle.com/security-alerts/cpujan2022.html"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50406.sh","reference_id":"CVE-2021-42013","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50406.sh"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50446.sh","reference_id":"CVE-2021-42013","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50446.sh"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2021-42013.json","reference_id":"CVE-2021-42013","reference_type":"","scores":[{"value":"critical","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2021-42013.json"},{"reference_url":"http://jvn.jp/en/jp/JVN51106450/index.html","reference_id":"index.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"http://jvn.jp/en/jp/JVN51106450/index.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20211029-0009/","reference_id":"ntap-20211029-0009","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20211029-0009/"},{"reference_url":"https://lists.apache.org/thread.html/r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E","reference_id":"r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://lists.apache.org/thread.html/r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E","reference_id":"r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://lists.apache.org/thread.html/r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E","reference_id":"rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://lists.apache.org/thread.html/rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC/","reference_id":"RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC/"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3/","reference_id":"WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:28:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23834?format=json","purl":"pkg:deb/debian/apache2@2.4.51-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.51-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2021-42013"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qsuf-kwzw-ukh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175408?format=json","vulnerability_id":"VCID-r2fd-nfnk-h7gy","summary":"A flaw was found in the WinNT MPM in httpd versions 2.4.1 to 2.4.9, when using the default AcceptFilter for that platform. A remote attacker could send carefully crafted requests that would leak memory and eventually lead to a denial of service against the server.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3523.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3523.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3523","reference_id":"","reference_type":"","scores":[{"value":"0.35235","scoring_system":"epss","scoring_elements":"0.97149","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3523"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1121519","reference_id":"1121519","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1121519"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2014-3523.json","reference_id":"CVE-2014-3523","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2014-3523.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2957","reference_id":"RHSA-2016:2957","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2957"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2014-3523"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r2fd-nfnk-h7gy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/20287?format=json","vulnerability_id":"VCID-rjay-4q4e-ukd6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-43394.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-43394.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43394","reference_id":"","reference_type":"","scores":[{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47688","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43394"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43394","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43394"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379332","reference_id":"2379332","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379332"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2024-43394.json","reference_id":"CVE-2024-43394","reference_type":"","scores":[],"url":"https://httpd.apache.org/security/json/CVE-2024-43394.json"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-11T16:06:25Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23908?format=json","purl":"pkg:deb/debian/apache2@2.4.65-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.65-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2024-43394"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rjay-4q4e-ukd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10121?format=json","vulnerability_id":"VCID-s1c7-rfs6-c3fu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41773.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41773.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41773","reference_id":"","reference_type":"","scores":[{"value":"0.94391","scoring_system":"epss","scoring_elements":"0.99974","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41773"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/07/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/07/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/09/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/09/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/16/1","reference_id":"1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/16/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/05/2","reference_id":"2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/05/2"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/2","reference_id":"2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2010757","reference_id":"2010757","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2010757"},{"reference_url":"https://security.gentoo.org/glsa/202208-20","reference_id":"202208-20","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://security.gentoo.org/glsa/202208-20"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/15/3","reference_id":"3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/15/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/4","reference_id":"4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/11/4","reference_id":"4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/11/4"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/5","reference_id":"5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/5"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/07/6","reference_id":"6","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/07/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/10/08/6","reference_id":"6","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/10/08/6"},{"reference_url":"http://packetstormsecurity.com/files/164629/Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html","reference_id":"Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://packetstormsecurity.com/files/164629/Apache-2.4.49-2.4.50-Traversal-Remote-Code-Execution.html"},{"reference_url":"http://packetstormsecurity.com/files/164418/Apache-HTTP-Server-2.4.49-Path-Traversal.html","reference_id":"Apache-HTTP-Server-2.4.49-Path-Traversal.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://packetstormsecurity.com/files/164418/Apache-HTTP-Server-2.4.49-Path-Traversal.html"},{"reference_url":"http://packetstormsecurity.com/files/164418/Apache-HTTP-Server-2.4.49-Path-Traversal-Remote-Code-Execution.html","reference_id":"Apache-HTTP-Server-2.4.49-Path-Traversal-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://packetstormsecurity.com/files/164418/Apache-HTTP-Server-2.4.49-Path-Traversal-Remote-Code-Execution.html"},{"reference_url":"http://packetstormsecurity.com/files/164941/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_id":"Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"http://packetstormsecurity.com/files/164941/Apache-HTTP-Server-2.4.50-Remote-Code-Execution.html"},{"reference_url":"https://security.archlinux.org/AVG-2442","reference_id":"AVG-2442","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2442"},{"reference_url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-pathtrv-LAzg68cZ","reference_id":"cisco-sa-apache-httpd-pathtrv-LAzg68cZ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-pathtrv-LAzg68cZ"},{"reference_url":"https://www.oracle.com/security-alerts/cpujan2022.html","reference_id":"cpujan2022.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://www.oracle.com/security-alerts/cpujan2022.html"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50383.sh","reference_id":"CVE-2021-41773","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50383.sh"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2021-41773.json","reference_id":"CVE-2021-41773","reference_type":"","scores":[{"value":"critical","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2021-41773.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50512.py","reference_id":"CVE-2021-42013;CVE-2021-41773","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/50512.py"},{"reference_url":"https://security.netapp.com/advisory/ntap-20211029-0009/","reference_id":"ntap-20211029-0009","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://security.netapp.com/advisory/ntap-20211029-0009/"},{"reference_url":"https://lists.apache.org/thread.html/r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E","reference_id":"r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.apache.org/thread.html/r17a4c6ce9aff662efd9459e9d1850ab4a611cb23392fc68264c72cb3%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r6abf5f2ba6f1aa8b1030f95367aaf17660c4e4c78cb2338aee18982f%40%3Cusers.httpd.apache.org%3E","reference_id":"r6abf5f2ba6f1aa8b1030f95367aaf17660c4e4c78cb2338aee18982f%40%3Cusers.httpd.apache.org%3E","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.apache.org/thread.html/r6abf5f2ba6f1aa8b1030f95367aaf17660c4e4c78cb2338aee18982f%40%3Cusers.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E","reference_id":"r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.apache.org/thread.html/r7c795cd45a3384d4d27e57618a215b0ed19cb6ca8eb070061ad5d837%40%3Cannounce.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r98d704ed4377ed889d40479db79ed1ee2f43b2ebdd79ce84b042df45%40%3Cannounce.apache.org%3E","reference_id":"r98d704ed4377ed889d40479db79ed1ee2f43b2ebdd79ce84b042df45%40%3Cannounce.apache.org%3E","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.apache.org/thread.html/r98d704ed4377ed889d40479db79ed1ee2f43b2ebdd79ce84b042df45%40%3Cannounce.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E","reference_id":"rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.apache.org/thread.html/rb5b0e46f179f60b0c70204656bc52fcb558e961cb4d06a971e9e3efb%40%3Cusers.httpd.apache.org%3E"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC/","reference_id":"RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RMIIEFINL6FUIOPD2A3M5XC6DH45Y3CC/"},{"reference_url":"https://httpd.apache.org/security/vulnerabilities_24.html","reference_id":"vulnerabilities_24.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://httpd.apache.org/security/vulnerabilities_24.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3/","reference_id":"WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-04T14:41:10Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WS5RVHOIIRECG65ZBTZY7IEJVWQSQPG3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23830?format=json","purl":"pkg:deb/debian/apache2@2.4.50-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.50-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2021-41773"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s1c7-rfs6-c3fu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175421?format=json","vulnerability_id":"VCID-swa7-1sfk-r7ec","summary":"While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing,\nallowing an external source to DoS the server. This requires a specially crafted request. \n\nThe vulnerability was recently introduced in version 2.4.49. No exploit is known to the project.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41524.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-41524.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41524","reference_id":"","reference_type":"","scores":[{"value":"0.03961","scoring_system":"epss","scoring_elements":"0.88633","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41524"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2010934","reference_id":"2010934","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2010934"},{"reference_url":"https://security.archlinux.org/AVG-2442","reference_id":"AVG-2442","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2442"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2021-41524.json","reference_id":"CVE-2021-41524","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2021-41524.json"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7143","reference_id":"RHSA-2022:7143","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7143"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7144","reference_id":"RHSA-2022:7144","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7144"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23830?format=json","purl":"pkg:deb/debian/apache2@2.4.50-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.50-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2021-41524"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-swa7-1sfk-r7ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210532?format=json","vulnerability_id":"VCID-t1nz-vvht-yubd","summary":"Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL.  NOTE: the vendor could not reproduce this issue","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6423.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6423.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6423","reference_id":"","reference_type":"","scores":[{"value":"0.03763","scoring_system":"epss","scoring_elements":"0.88301","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6423"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2007-6423"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t1nz-vvht-yubd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175397?format=json","vulnerability_id":"VCID-ubsc-7v3g-tkeb","summary":"The modules mod_proxy_ajp and mod_proxy_http did not always close the connection to the back end server when necessary as part of error handling. This could lead to an information disclosure due to a response mixup between users.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3502.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3502.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3502","reference_id":"","reference_type":"","scores":[{"value":"0.03787","scoring_system":"epss","scoring_elements":"0.88335","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3502"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=850776","reference_id":"850776","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=850776"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-3502.json","reference_id":"CVE-2012-3502","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-3502.json"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2012-3502"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ubsc-7v3g-tkeb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210508?format=json","vulnerability_id":"VCID-wm6s-x9hp-7uda","summary":"The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double slash (//).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1138.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-1138.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-1138","reference_id":"","reference_type":"","scores":[{"value":"0.05234","scoring_system":"epss","scoring_elements":"0.90176","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-1138"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23296.txt","reference_id":"CVE-2003-1138;OSVDB-19137","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23296.txt"},{"reference_url":"https://www.securityfocus.com/bid/8898/info","reference_id":"CVE-2003-1138;OSVDB-19137","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/8898/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2003-1138"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wm6s-x9hp-7uda"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210588?format=json","vulnerability_id":"VCID-wmwk-aeyj-63eq","summary":"Missing fixes for CVE-2021-40438 and CVE-2021-26691 in the versions of httpd, as shipped in Red Hat Enterprise Linux 8.5.0, causes a security regression compared to the versions shipped in Red Hat Enterprise Linux 8.4. A user who installs or updates to Red Hat Enterprise Linux 8.5.0 would be vulnerable to the mentioned CVEs, even if they were properly fixed in Red Hat Enterprise Linux 8.4. CVE-2021-20325 was assigned to that Red Hat specific security regression and it does not affect the upstream versions of httpd.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20325.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20325.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20325","reference_id":"","reference_type":"","scores":[{"value":"0.00933","scoring_system":"epss","scoring_elements":"0.76586","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20325"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2017321","reference_id":"2017321","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2017321"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4537","reference_id":"RHSA-2021:4537","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4537"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2021-20325"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wmwk-aeyj-63eq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175351?format=json","vulnerability_id":"VCID-yk7n-s21x-9qf5","summary":"The recall_headers function in mod_mem_cache in Apache 2.2.4 did not properly copy all levels of header data, which can cause Apache to return HTTP headers containing previously used data, which could be used by remote attackers to obtain potentially sensitive information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1862.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1862.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1862","reference_id":"","reference_type":"","scores":[{"value":"0.10659","scoring_system":"epss","scoring_elements":"0.93471","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1862"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=242606","reference_id":"242606","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=242606"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2007-1862.json","reference_id":"CVE-2007-1862","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2007-1862.json"},{"reference_url":"https://security.gentoo.org/glsa/200711-06","reference_id":"GLSA-200711-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200711-06"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1088662?format=json","purl":"pkg:deb/debian/apache2@2.4.68-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.68-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23624?format=json","purl":"pkg:deb/debian/apache2@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23584?format=json","purl":"pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23581?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23588?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1~deb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1~deb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23586?format=json","purl":"pkg:deb/debian/apache2@2.4.67-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-474h-3jpr-v7bh"},{"vulnerability":"VCID-4t19-u79x-23aj"},{"vulnerability":"VCID-8u26-4z27-muam"},{"vulnerability":"VCID-9a5r-ncyv-4yff"},{"vulnerability":"VCID-dbsj-aha3-cqh7"},{"vulnerability":"VCID-jt91-w8ze-1feb"},{"vulnerability":"VCID-kmvy-d7p6-r3cu"},{"vulnerability":"VCID-ne8u-aerq-zkdp"},{"vulnerability":"VCID-tjh2-dhan-9kda"},{"vulnerability":"VCID-uk9s-85jd-1fbe"},{"vulnerability":"VCID-urtf-gpk3-zbfs"},{"vulnerability":"VCID-vcrq-dh9e-bbdn"},{"vulnerability":"VCID-ynuh-mrv3-puhs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/23587?format=json","purl":"pkg:deb/debian/apache2@2.4.67-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.67-2%3Fdistro=trixie"}],"aliases":["CVE-2007-1862"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yk7n-s21x-9qf5"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@0%3Fdistro=trixie"}