{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","type":"ebuild","namespace":"www-servers","name":"apache","version":"2.2.22-r1","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.2.25","latest_non_vulnerable_version":"2.4.62","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3732?format=json","vulnerability_id":"VCID-53da-z9gn-n7f2","summary":"A flaw was found in mod_log_config. If the '%{cookiename}C' log format string is in use, a remote attacker could send a specific cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0021.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0021.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0021","reference_id":"","reference_type":"","scores":[{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.9689","published_at":"2026-04-13T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96858","published_at":"2026-04-01T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96866","published_at":"2026-04-02T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96871","published_at":"2026-04-04T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96875","published_at":"2026-04-07T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96884","published_at":"2026-04-08T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96885","published_at":"2026-04-09T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96888","published_at":"2026-04-11T12:55:00Z"},{"value":"0.3296","scoring_system":"epss","scoring_elements":"0.96889","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0021"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0021","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0021"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=785065","reference_id":"785065","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=785065"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-0021.json","reference_id":"CVE-2012-0021","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-0021.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1368-1/","reference_id":"USN-1368-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1368-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2012-0021"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-53da-z9gn-n7f2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3722?format=json","vulnerability_id":"VCID-56kt-8bg6-zbcj","summary":"A flaw was found in the handling of requests by mod_cache (2.2) and mod_dav (2.0 and 2.2). A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon \"CacheIgnoreURLSessionIdentifiers\" directive, introduced in version 2.2.14, is used.","references":[{"reference_url":"http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav","reference_id":"","reference_type":"","scores":[],"url":"http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav"},{"reference_url":"http://httpd.apache.org/security/vulnerabilities_22.html","reference_id":"","reference_type":"","scores":[],"url":"http://httpd.apache.org/security/vulnerabilities_22.html"},{"reference_url":"http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"},{"reference_url":"http://marc.info/?l=apache-announce&m=128009718610929&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=apache-announce&m=128009718610929&w=2"},{"reference_url":"http://marc.info/?l=bugtraq&m=129190899612998&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=bugtraq&m=129190899612998&w=2"},{"reference_url":"http://marc.info/?l=bugtraq&m=133355494609819&w=2","reference_id":"","reference_type":"","scores":[],"url":"http://marc.info/?l=bugtraq&m=133355494609819&w=2"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1452","reference_id":"","reference_type":"","scores":[{"value":"0.13871","scoring_system":"epss","scoring_elements":"0.94299","published_at":"2026-04-12T12:55:00Z"},{"value":"0.13871","scoring_system":"epss","scoring_elements":"0.943","published_at":"2026-04-13T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.94674","published_at":"2026-04-02T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.94678","published_at":"2026-04-04T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.9469","published_at":"2026-04-08T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.94694","published_at":"2026-04-09T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.94698","published_at":"2026-04-11T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.9468","published_at":"2026-04-07T12:55:00Z"},{"value":"0.15663","scoring_system":"epss","scoring_elements":"0.94666","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452"},{"reference_url":"http://secunia.com/advisories/42367","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/42367"},{"reference_url":"https://issues.apache.org/bugzilla/show_bug.cgi?id=49246","reference_id":"","reference_type":"","scores":[],"url":"https://issues.apache.org/bugzilla/show_bug.cgi?id=49246"},{"reference_url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395","reference_id":"","reference_type":"","scores":[],"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395"},{"reference_url":"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341"},{"reference_url":"http://support.apple.com/kb/HT4581","reference_id":"","reference_type":"","scores":[],"url":"http://support.apple.com/kb/HT4581"},{"reference_url":"http://ubuntu.com/usn/usn-1021-1","reference_id":"","reference_type":"","scores":[],"url":"http://ubuntu.com/usn/usn-1021-1"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0659.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0659.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2011-0896.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2011-0896.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2011-0897.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2011-0897.html"},{"reference_url":"http://www.vupen.com/english/advisories/2010/2218","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2010/2218"},{"reference_url":"http://www.vupen.com/english/advisories/2010/3064","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2010/3064"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0291","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2011/0291"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=618189","reference_id":"618189","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=618189"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-1452.json","reference_id":"CVE-2010-1452","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-1452.json"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2010-1452","reference_id":"CVE-2010-1452","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:N/I:N/A:P"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-1452"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0659","reference_id":"RHSA-2010:0659","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0659"},{"reference_url":"https://usn.ubuntu.com/1021-1/","reference_id":"USN-1021-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1021-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2010-1452"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-56kt-8bg6-zbcj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3730?format=json","vulnerability_id":"VCID-5yez-d5nj-q7eq","summary":"An integer overflow flaw was found which, when the mod_setenvif module is enabled, could allow local users to gain privileges via a .htaccess file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3607","reference_id":"","reference_type":"","scores":[{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47455","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47395","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47429","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.4745","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47399","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47454","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47473","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00242","scoring_system":"epss","scoring_elements":"0.47448","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3607"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=769844","reference_id":"769844","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=769844"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2011-3607.json","reference_id":"CVE-2011-3607","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2011-3607.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt","reference_id":"CVE-2011-4415;CVE-2011-3607","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt"},{"reference_url":"http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/","reference_id":"CVE-2011-4415;CVE-2011-3607","reference_type":"exploit","scores":[],"url":"http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0128","reference_id":"RHSA-2012:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0323","reference_id":"RHSA-2012:0323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1368-1/","reference_id":"USN-1368-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1368-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2011-3607"],"risk_score":4.2,"exploitability":"2.0","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5yez-d5nj-q7eq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3728?format=json","vulnerability_id":"VCID-6vze-zk58-7yep","summary":"A flaw was found when mod_proxy_ajp is used together with mod_proxy_balancer. Given a specific configuration, a remote attacker could send certain malformed HTTP requests, putting a backend server into an error state until the retry timeout expired. This could lead to a temporary denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3348.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3348.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3348","reference_id":"","reference_type":"","scores":[{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96969","published_at":"2026-04-13T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.9694","published_at":"2026-04-01T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96947","published_at":"2026-04-02T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96952","published_at":"2026-04-04T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96955","published_at":"2026-04-07T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96963","published_at":"2026-04-08T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96964","published_at":"2026-04-09T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96967","published_at":"2026-04-11T12:55:00Z"},{"value":"0.34026","scoring_system":"epss","scoring_elements":"0.96968","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3348"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3348","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3348"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=736690","reference_id":"736690","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=736690"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2011-3348.json","reference_id":"CVE-2011-3348","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2011-3348.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1391","reference_id":"RHSA-2011:1391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1259-1/","reference_id":"USN-1259-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1259-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2011-3348"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6vze-zk58-7yep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3725?format=json","vulnerability_id":"VCID-cn4b-1w42-gyda","summary":"An information disclosure flaw was found in mod_proxy_http in version 2.2.9 only, on Unix platforms. Under certain timeout conditions, the server could return a response intended for another user. Only those configurations which trigger the use of proxy worker pools are affected. There was no vulnerability on earlier versions, as proxy pools were not yet introduced. The simplest workaround is to globally configure:\nSetEnv proxy-nokeepalive 1","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2791.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2791.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2791","reference_id":"","reference_type":"","scores":[{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83967","published_at":"2026-04-13T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83897","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83977","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83971","published_at":"2026-04-12T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83912","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83928","published_at":"2026-04-04T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83931","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83954","published_at":"2026-04-08T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.83961","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2791"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2791","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2791"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/60883","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/60883"},{"reference_url":"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r064df0985779b7ee044d3120d71ba59750427cf53f57ba3384e3773f%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r064df0985779b7ee044d3120d71ba59750427cf53f57ba3384e3773f%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150","reference_id":"","reference_type":"","scores":[],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"},{"reference_url":"http://www.openwall.com/lists/oss-security/2010/07/30/1","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2010/07/30/1"},{"reference_url":"http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2010-0659.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2010-0659.html"},{"reference_url":"http://www.securityfocus.com/bid/42102","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/42102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=617523","reference_id":"617523","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=617523"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-2791.json","reference_id":"CVE-2010-2791","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-2791.json"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2010-2791","reference_id":"CVE-2010-2791","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:N/A:N"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2010-2791"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0659","reference_id":"RHSA-2010:0659","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0659"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2010-2791"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cn4b-1w42-gyda"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3734?format=json","vulnerability_id":"VCID-d4rc-pnv5-6uc8","summary":"A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose \"httpOnly\" cookies when no custom ErrorDocument is specified.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0053","reference_id":"","reference_type":"","scores":[{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.98088","published_at":"2026-04-07T12:55:00Z"},{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.98081","published_at":"2026-04-01T12:55:00Z"},{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.98084","published_at":"2026-04-02T12:55:00Z"},{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.981","published_at":"2026-04-13T12:55:00Z"},{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.98093","published_at":"2026-04-09T12:55:00Z"},{"value":"0.55955","scoring_system":"epss","scoring_elements":"0.98099","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0053"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=785069","reference_id":"785069","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=785069"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-0053.json","reference_id":"CVE-2012-0053","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-0053.json"},{"reference_url":"https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08","reference_id":"CVE-2012-0053;OSVDB-78556","reference_type":"exploit","scores":[],"url":"https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html","reference_id":"CVE-2012-0053;OSVDB-78556","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0128","reference_id":"RHSA-2012:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0323","reference_id":"RHSA-2012:0323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1368-1/","reference_id":"USN-1368-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1368-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2012-0053"],"risk_score":9.6,"exploitability":"2.0","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d4rc-pnv5-6uc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3735?format=json","vulnerability_id":"VCID-ese4-47tg-efbw","summary":"Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0883.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0883","reference_id":"","reference_type":"","scores":[{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.4166","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41584","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41671","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41698","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41626","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41676","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41684","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41707","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41674","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0883"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=813559","reference_id":"813559","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=813559"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-0883.json","reference_id":"CVE-2012-0883","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-0883.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:1594","reference_id":"RHSA-2012:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:1594"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2012-0883"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ese4-47tg-efbw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3731?format=json","vulnerability_id":"VCID-gu44-7hkr-muae","summary":"An additional exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4317.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4317.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4317","reference_id":"","reference_type":"","scores":[{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99197","published_at":"2026-04-04T12:55:00Z"},{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99193","published_at":"2026-04-01T12:55:00Z"},{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99195","published_at":"2026-04-02T12:55:00Z"},{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99203","published_at":"2026-04-12T12:55:00Z"},{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99201","published_at":"2026-04-13T12:55:00Z"},{"value":"0.81918","scoring_system":"epss","scoring_elements":"0.99202","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4317"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=756483","reference_id":"756483","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=756483"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2011-4317.json","reference_id":"CVE-2011-4317","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2011-4317.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36352.txt","reference_id":"CVE-2011-4317;OSVDB-77310","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/36352.txt"},{"reference_url":"https://www.securityfocus.com/bid/50802/info","reference_id":"CVE-2011-4317;OSVDB-77310","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/50802/info"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0128","reference_id":"RHSA-2012:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0128"},{"reference_url":"https://usn.ubuntu.com/1368-1/","reference_id":"USN-1368-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1368-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2011-4317"],"risk_score":9.6,"exploitability":"2.0","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gu44-7hkr-muae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3727?format=json","vulnerability_id":"VCID-kkfv-4jd1-bqdm","summary":"A flaw was found in the way the Apache HTTP Server handled Range HTTP headers. A remote attacker could use this flaw to cause httpd to use an excessive amount of memory and CPU time via HTTP requests with a specially-crafted Range header. This could be used in a denial of service attack. Advisory: CVE-2011-3192.txt","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3192","reference_id":"","reference_type":"","scores":[{"value":"0.90456","scoring_system":"epss","scoring_elements":"0.99604","published_at":"2026-04-02T12:55:00Z"},{"value":"0.90456","scoring_system":"epss","scoring_elements":"0.99605","published_at":"2026-04-04T12:55:00Z"},{"value":"0.90456","scoring_system":"epss","scoring_elements":"0.99606","published_at":"2026-04-07T12:55:00Z"},{"value":"0.90456","scoring_system":"epss","scoring_elements":"0.99607","published_at":"2026-04-13T12:55:00Z"},{"value":"0.90456","scoring_system":"epss","scoring_elements":"0.99608","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3192"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=732928","reference_id":"732928","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=732928"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2011-3192.json","reference_id":"CVE-2011-3192","reference_type":"","scores":[{"value":"important","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2011-3192.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c","reference_id":"CVE-2014-5329;OSVDB-74721;CVE-2011-3192","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl","reference_id":"CVE-2014-5329;OSVDB-74721;CVE-2011-3192","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1245","reference_id":"RHSA-2011:1245","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1294","reference_id":"RHSA-2011:1294","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1294"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1300","reference_id":"RHSA-2011:1300","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1300"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1329","reference_id":"RHSA-2011:1329","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1329"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1330","reference_id":"RHSA-2011:1330","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1330"},{"reference_url":"https://usn.ubuntu.com/1199-1/","reference_id":"USN-1199-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1199-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2011-3192"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kkfv-4jd1-bqdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3719?format=json","vulnerability_id":"VCID-pdtf-5zv7-2qaf","summary":"mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0408.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0408.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0408","reference_id":"","reference_type":"","scores":[{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96722","published_at":"2026-04-13T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96691","published_at":"2026-04-01T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96701","published_at":"2026-04-02T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96703","published_at":"2026-04-04T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96707","published_at":"2026-04-07T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96715","published_at":"2026-04-08T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96717","published_at":"2026-04-09T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.96719","published_at":"2026-04-11T12:55:00Z"},{"value":"0.30734","scoring_system":"epss","scoring_elements":"0.9672","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0408"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=569905","reference_id":"569905","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=569905"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-0408.json","reference_id":"CVE-2010-0408","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-0408.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0168","reference_id":"RHSA-2010:0168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0396","reference_id":"RHSA-2010:0396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0396"},{"reference_url":"https://usn.ubuntu.com/908-1/","reference_id":"USN-908-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/908-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2010-0408"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pdtf-5zv7-2qaf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3729?format=json","vulnerability_id":"VCID-prd8-51a5-pygj","summary":"An exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker. No update of 1.3 will be released.\nPatches will be published to https://archive.apache.org/dist/httpd/patches/apply_to_1.3.42/","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3368","reference_id":"","reference_type":"","scores":[{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99065","published_at":"2026-04-13T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99054","published_at":"2026-04-01T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99055","published_at":"2026-04-02T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99059","published_at":"2026-04-04T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99062","published_at":"2026-04-07T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99063","published_at":"2026-04-08T12:55:00Z"},{"value":"0.79136","scoring_system":"epss","scoring_elements":"0.99064","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3368"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=740045","reference_id":"740045","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=740045"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2011-3368.json","reference_id":"CVE-2011-3368","reference_type":"","scores":[{"value":"moderate","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2011-3368.json"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py","reference_id":"CVE-2011-3368;OSVDB-76079","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1391","reference_id":"RHSA-2011:1391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1392","reference_id":"RHSA-2011:1392","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1259-1/","reference_id":"USN-1259-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1259-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2011-3368"],"risk_score":9.6,"exploitability":"2.0","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-prd8-51a5-pygj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3721?format=json","vulnerability_id":"VCID-wycq-jwzz-q7hf","summary":"A flaw in the core subrequest process code was fixed, to always provide a shallow copy of the headers_in array to the subrequest, instead of a pointer to the parent request's array as it had for requests without request bodies. This meant all modules such as mod_headers which may manipulate the input headers for a subrequest would poison the parent request in two ways, one by modifying the parent request, which might not be intended, and second by leaving pointers to modified header fields in memory allocated to the subrequest scope, which could be freed before the main request processing was finished, resulting in a segfault or in revealing data from another request on threaded servers, such as the worker or winnt MPMs.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0434","reference_id":"","reference_type":"","scores":[{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85501","published_at":"2026-04-13T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85428","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.8544","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.8546","published_at":"2026-04-04T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85463","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85484","published_at":"2026-04-08T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85492","published_at":"2026-04-09T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85506","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02554","scoring_system":"epss","scoring_elements":"0.85504","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=570171","reference_id":"570171","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=570171"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2010-0434.json","reference_id":"CVE-2010-0434","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2010-0434.json"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0168","reference_id":"RHSA-2010:0168","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0168"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0175","reference_id":"RHSA-2010:0175","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0396","reference_id":"RHSA-2010:0396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0396"},{"reference_url":"https://usn.ubuntu.com/908-1/","reference_id":"USN-908-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/908-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2010-0434"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wycq-jwzz-q7hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3733?format=json","vulnerability_id":"VCID-ym93-sxb8-fkdm","summary":"A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0031","reference_id":"","reference_type":"","scores":[{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78884","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78837","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78843","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78872","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78854","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78879","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78886","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78909","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01196","scoring_system":"epss","scoring_elements":"0.78893","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=773744","reference_id":"773744","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=773744"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt","reference_id":"CVE-2012-0031","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt"},{"reference_url":"https://httpd.apache.org/security/json/CVE-2012-0031.json","reference_id":"CVE-2012-0031","reference_type":"","scores":[{"value":"low","scoring_system":"apache_httpd","scoring_elements":""}],"url":"https://httpd.apache.org/security/json/CVE-2012-0031.json"},{"reference_url":"http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/","reference_id":"CVE-2012-0031","reference_type":"exploit","scores":[],"url":"http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/"},{"reference_url":"https://security.gentoo.org/glsa/201206-25","reference_id":"GLSA-201206-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0128","reference_id":"RHSA-2012:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0323","reference_id":"RHSA-2012:0323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0542","reference_id":"RHSA-2012:0542","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0542"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0543","reference_id":"RHSA-2012:0543","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0543"},{"reference_url":"https://usn.ubuntu.com/1368-1/","reference_id":"USN-1368-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1368-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/74576?format=json","purl":"pkg:ebuild/www-servers/apache@2.2.22-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}],"aliases":["CVE-2012-0031"],"risk_score":4.2,"exploitability":"2.0","weighted_severity":"2.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ym93-sxb8-fkdm"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.2.22-r1"}