Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/74921?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/74921?format=api", "purl": "pkg:apache/httpd@2.0.46", "type": "apache", "namespace": "", "name": "httpd", "version": "2.0.46", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2.0.65", "latest_non_vulnerable_version": "2.4.54", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50983?format=api", "vulnerability_id": "VCID-19s8-6qpv-23fx", "summary": "A memory leak in the worker MPM would allow remote attackers to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections. This issue was downgraded in severity to low (from moderate) as sucessful exploitation of the race condition would be difficult.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2970.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2970.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2970", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.20799", "scoring_system": "epss", "scoring_elements": "0.95714", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.20799", "scoring_system": "epss", "scoring_elements": "0.9572", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.20799", "scoring_system": "epss", "scoring_elements": "0.95724", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.20799", "scoring_system": "epss", "scoring_elements": "0.95725", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.20799", "scoring_system": "epss", "scoring_elements": "0.95729", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2970" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617769", "reference_id": "1617769", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617769" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=340337", "reference_id": "340337", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=340337" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2970.json", "reference_id": "CVE-2005-2970", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2970.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0159", "reference_id": "RHSA-2006:0159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0159" }, { "reference_url": "https://usn.ubuntu.com/225-1/", "reference_id": "USN-225-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/225-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-2970" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-19s8-6qpv-23fx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50976?format=api", "vulnerability_id": "VCID-2n6m-jrjj-73gb", "summary": "An issue was discovered where the field length limit was not enforced for certain malicious requests. This could allow a remote attacker who is able to send large amounts of data to a server the ability to cause Apache children to consume proportional amounts of memory, leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0942.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0942.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0942", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.79222", "scoring_system": "epss", "scoring_elements": "0.99091", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.79222", "scoring_system": "epss", "scoring_elements": "0.99092", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.79222", "scoring_system": "epss", "scoring_elements": "0.99093", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0942" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617326", "reference_id": "1617326", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617326" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0942.json", "reference_id": "CVE-2004-0942", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0942.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/855.pl", "reference_id": "OSVDB-11391;CVE-2004-0942", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/855.pl" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:562", "reference_id": "RHSA-2004:562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:562" }, { "reference_url": "https://usn.ubuntu.com/23-1/", "reference_id": "USN-23-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/23-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74930?format=api", "purl": "pkg:apache/httpd@2.0.53", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.53" } ], "aliases": [ "CVE-2004-0942" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2n6m-jrjj-73gb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50956?format=api", "vulnerability_id": "VCID-2uqs-jk6y-a7ay", "summary": "In a server with multiple listening sockets a certain error returned by accept() on a rarely access port can cause a temporary denial of service, due to a bug in the prefork MPM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0253.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0253.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.9235", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92364", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.9236", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92356", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92374", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0253" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0253", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0253" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617012", "reference_id": "1617012", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617012" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0253.json", "reference_id": "CVE-2003-0253", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0253.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:240", "reference_id": "RHSA-2003:240", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:240" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74922?format=api", "purl": "pkg:apache/httpd@2.0.47", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.47" } ], "aliases": [ "CVE-2003-0253" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2uqs-jk6y-a7ay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51014?format=api", "vulnerability_id": "VCID-425q-pchy-2yfg", "summary": "A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3720.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3720.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3720", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01573", "scoring_system": "epss", "scoring_elements": "0.81873", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01573", "scoring_system": "epss", "scoring_elements": "0.81907", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01573", "scoring_system": "epss", "scoring_elements": "0.81908", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01573", "scoring_system": "epss", "scoring_elements": "0.81902", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01573", "scoring_system": "epss", "scoring_elements": "0.81917", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3720" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=531697", "reference_id": "531697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=531697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551936", "reference_id": "551936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551936" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919", "reference_id": "560919", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920", "reference_id": "560920", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921", "reference_id": "560921", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922", "reference_id": "560922", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926", "reference_id": "560926", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927", "reference_id": "560927", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928", "reference_id": "560928", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929", "reference_id": "560929", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930", "reference_id": "560930", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935", "reference_id": "560935", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936", "reference_id": "560936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937", "reference_id": "560937", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940", "reference_id": "560940", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942", "reference_id": "560942", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560950", "reference_id": "560950", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560950" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053", "reference_id": "601053", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-3720.json", "reference_id": "CVE-2009-3720", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-3720.json" }, { "reference_url": "https://security.gentoo.org/glsa/201209-06", "reference_id": "GLSA-201209-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1572", "reference_id": "RHSA-2009:1572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1625", "reference_id": "RHSA-2009:1625", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1625" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0002", "reference_id": "RHSA-2010:0002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0491", "reference_id": "RHSA-2011:0491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0492", "reference_id": "RHSA-2011:0492", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0492" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3239", "reference_id": "RHSA-2017:3239", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3239" }, { "reference_url": "https://usn.ubuntu.com/890-1/", "reference_id": "USN-890-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-1/" }, { "reference_url": "https://usn.ubuntu.com/890-2/", "reference_id": "USN-890-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-2/" }, { "reference_url": "https://usn.ubuntu.com/890-3/", "reference_id": "USN-890-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-3/" }, { "reference_url": "https://usn.ubuntu.com/890-4/", "reference_id": "USN-890-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-4/" }, { "reference_url": "https://usn.ubuntu.com/890-5/", "reference_id": "USN-890-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-5/" }, { "reference_url": "https://usn.ubuntu.com/890-6/", "reference_id": "USN-890-6", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74960?format=api", "purl": "pkg:apache/httpd@2.2.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-yqbj-upd2-fbc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.17" } ], "aliases": [ "CVE-2009-3720" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-425q-pchy-2yfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50957?format=api", "vulnerability_id": "VCID-44yz-runu-27aw", "summary": "When a client requests that proxy ftp connect to a ftp server with IPv6 address, and the proxy is unable to create an IPv6 socket, an infinite loop occurs causing a remote Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0254.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0254.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0254", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.9235", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92364", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.9236", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92356", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.08196", "scoring_system": "epss", "scoring_elements": "0.92374", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0254" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0254", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0254" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617013", "reference_id": "1617013", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617013" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0254.json", "reference_id": "CVE-2003-0254", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0254.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:240", "reference_id": "RHSA-2003:240", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:240" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74922?format=api", "purl": "pkg:apache/httpd@2.0.47", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.47" } ], "aliases": [ "CVE-2003-0254" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44yz-runu-27aw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50959?format=api", "vulnerability_id": "VCID-4e53-zbp1-zqa5", "summary": "By using a regular expression with more than 9 captures a buffer overflow can occur in mod_alias or mod_rewrite. To exploit this an attacker would need to be able to create a carefully crafted configuration file (.htaccess or httpd.conf)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0542.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0542.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0542", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.67317", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.67268", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.6731", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.67303", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.67304", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00523", "scoring_system": "epss", "scoring_elements": "0.67287", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0542" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0542", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0542" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617048", "reference_id": "1617048", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617048" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0542.json", "reference_id": "CVE-2003-0542", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0542.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:320", "reference_id": "RHSA-2003:320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:360", "reference_id": "RHSA-2003:360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:405", "reference_id": "RHSA-2003:405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:015", "reference_id": "RHSA-2004:015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:139", "reference_id": "RHSA-2004:139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:816", "reference_id": "RHSA-2005:816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:816" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74923?format=api", "purl": "pkg:apache/httpd@2.0.48", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.48" } ], "aliases": [ "CVE-2003-0542" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4e53-zbp1-zqa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50949?format=api", "vulnerability_id": "VCID-59vv-rvws-7yb6", "summary": "Apache does not filter terminal escape sequences from error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0020.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0020.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0020", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.2626", "scoring_system": "epss", "scoring_elements": "0.96403", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.2626", "scoring_system": "epss", "scoring_elements": "0.96408", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.2626", "scoring_system": "epss", "scoring_elements": "0.96412", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.2626", "scoring_system": "epss", "scoring_elements": "0.96413", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.2626", "scoring_system": "epss", "scoring_elements": "0.96418", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0020" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0020", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0020" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616937", "reference_id": "1616937", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616937" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0020.json", "reference_id": "CVE-2003-0020", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0020.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:082", "reference_id": "RHSA-2003:082", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:082" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:083", "reference_id": "RHSA-2003:083", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:083" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:104", "reference_id": "RHSA-2003:104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:139", "reference_id": "RHSA-2003:139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:243", "reference_id": "RHSA-2003:243", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:243" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:244", "reference_id": "RHSA-2003:244", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:244" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74925?format=api", "purl": "pkg:apache/httpd@2.0.49", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2r5g-hvsv-j7af" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.49" } ], "aliases": [ "CVE-2003-0020" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-59vv-rvws-7yb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51031?format=api", "vulnerability_id": "VCID-5h45-6kty-ffhm", "summary": "A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose \"httpOnly\" cookies when no custom ErrorDocument is specified.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0053.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0053", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.23641", "scoring_system": "epss", "scoring_elements": "0.96104", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.23641", "scoring_system": "epss", "scoring_elements": "0.96099", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.33846", "scoring_system": "epss", "scoring_elements": "0.9705", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.33846", "scoring_system": "epss", "scoring_elements": "0.97054", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.33846", "scoring_system": "epss", "scoring_elements": "0.97052", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.33846", "scoring_system": "epss", "scoring_elements": "0.97047", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0053" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0053" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=785069", "reference_id": "785069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=785069" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0053.json", "reference_id": "CVE-2012-0053", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0053.json" }, { "reference_url": "https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08", "reference_id": "CVE-2012-0053;OSVDB-78556", "reference_type": "exploit", "scores": [], "url": "https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html", "reference_id": "CVE-2012-0053;OSVDB-78556", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/18442.html" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74969?format=api", "purl": "pkg:apache/httpd@2.2.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.22" } ], "aliases": [ "CVE-2012-0053" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5h45-6kty-ffhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50993?format=api", "vulnerability_id": "VCID-63gb-krwm-xqgg", "summary": "A flaw was found in the mod_imagemap module. On sites where mod_imagemap is enabled and an imagemap file is publicly available, a cross-site scripting attack is possible.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5000.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5000.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5000", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.78073", "scoring_system": "epss", "scoring_elements": "0.99035", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.78073", "scoring_system": "epss", "scoring_elements": "0.99036", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.78073", "scoring_system": "epss", "scoring_elements": "0.99037", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=419931", "reference_id": "419931", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=419931" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2007-5000.json", "reference_id": "CVE-2007-5000", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2007-5000.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0004", "reference_id": "RHSA-2008:0004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0005", "reference_id": "RHSA-2008:0005", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0005" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0006", "reference_id": "RHSA-2008:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0007", "reference_id": "RHSA-2008:0007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0008", "reference_id": "RHSA-2008:0008", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0008" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0263", "reference_id": "RHSA-2008:0263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" }, { "reference_url": "https://usn.ubuntu.com/575-1/", "reference_id": "USN-575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74949?format=api", "purl": "pkg:apache/httpd@2.0.63", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.63" }, { "url": "http://public2.vulnerablecode.io/api/packages/74950?format=api", "purl": "pkg:apache/httpd@2.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.8" } ], "aliases": [ "CVE-2007-5000" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-63gb-krwm-xqgg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50974?format=api", "vulnerability_id": "VCID-69kb-xdhf-h7hp", "summary": "An issue has been discovered in the mod_ssl module when configured to use the \"SSLCipherSuite\" directive in directory or location context. If a particular location context has been configured to require a specific set of cipher suites, then a client will be able to access that location using any cipher suite allowed by the virtual host configuration.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0885.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0885.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0885", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90981", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90969", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90983", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90993", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90978", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.06144", "scoring_system": "epss", "scoring_elements": "0.90975", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0885" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=430637", "reference_id": "430637", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=430637" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0885.json", "reference_id": "CVE-2004-0885", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0885.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:562", "reference_id": "RHSA-2004:562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:600", "reference_id": "RHSA-2004:600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:653", "reference_id": "RHSA-2004:653", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:653" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:816", "reference_id": "RHSA-2005:816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74930?format=api", "purl": "pkg:apache/httpd@2.0.53", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.53" } ], "aliases": [ "CVE-2004-0885" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-69kb-xdhf-h7hp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51026?format=api", "vulnerability_id": "VCID-72zv-psyw-vbh7", "summary": "An exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker. No update of 1.3 will be released.\nPatches will be published to https://archive.apache.org/dist/httpd/patches/apply_to_1.3.42/", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3368", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.76893", "scoring_system": "epss", "scoring_elements": "0.98976", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.76893", "scoring_system": "epss", "scoring_elements": "0.98977", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.76893", "scoring_system": "epss", "scoring_elements": "0.98979", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.76893", "scoring_system": "epss", "scoring_elements": "0.98978", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3368" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3368" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740045", "reference_id": "740045", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740045" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3368.json", "reference_id": "CVE-2011-3368", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3368.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py", "reference_id": "CVE-2011-3368;OSVDB-76079", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17969.py" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1391", "reference_id": "RHSA-2011:1391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1392", "reference_id": "RHSA-2011:1392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1259-1/", "reference_id": "USN-1259-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1259-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74969?format=api", "purl": "pkg:apache/httpd@2.2.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.22" } ], "aliases": [ "CVE-2011-3368" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-72zv-psyw-vbh7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50985?format=api", "vulnerability_id": "VCID-7f75-bedw-efbb", "summary": "A NULL pointer dereference flaw in mod_ssl was discovered affecting server configurations where an SSL virtual host is configured with access control and a custom 400 error document. A remote attacker could send a carefully crafted request to trigger this issue which would lead to a crash. This crash would only be a denial of service if using the worker MPM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3357.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3357.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3357", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97585", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97578", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97583", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97587", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97584", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.43464", "scoring_system": "epss", "scoring_elements": "0.97586", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3357" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617818", "reference_id": "1617818", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617818" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=351246", "reference_id": "351246", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=351246" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-3357.json", "reference_id": "CVE-2005-3357", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-3357.json" }, { "reference_url": "https://security.gentoo.org/glsa/200602-03", "reference_id": "GLSA-200602-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200602-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0159", "reference_id": "RHSA-2006:0159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0159" }, { "reference_url": "https://usn.ubuntu.com/241-1/", "reference_id": "USN-241-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/241-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74937?format=api", "purl": "pkg:apache/httpd@2.0.58", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.58" }, { "url": "http://public2.vulnerablecode.io/api/packages/74938?format=api", "purl": "pkg:apache/httpd@2.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.2" } ], "aliases": [ "CVE-2005-3357" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7f75-bedw-efbb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50992?format=api", "vulnerability_id": "VCID-7nz2-dvhg-eud7", "summary": "A flaw was found in the Apache HTTP Server mod_proxy module. On sites where a reverse proxy is configured, a remote attacker could send a carefully crafted request that would cause the Apache child process handling that request to crash. On sites where a forward proxy is configured, an attacker could cause a similar crash if a user could be persuaded to visit a malicious site using the proxy. This could lead to a denial of service if using a threaded Multi-Processing Module.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3847.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3847.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3847", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.23276", "scoring_system": "epss", "scoring_elements": "0.96049", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.23276", "scoring_system": "epss", "scoring_elements": "0.96053", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.23276", "scoring_system": "epss", "scoring_elements": "0.96057", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.23276", "scoring_system": "epss", "scoring_elements": "0.96058", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.23276", "scoring_system": "epss", "scoring_elements": "0.96063", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3847" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3847", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3847" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=250731", "reference_id": "250731", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=250731" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=441845", "reference_id": "441845", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=441845" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2007-3847.json", "reference_id": "CVE-2007-3847", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2007-3847.json" }, { "reference_url": "https://security.gentoo.org/glsa/200711-06", "reference_id": "GLSA-200711-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0746", "reference_id": "RHSA-2007:0746", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0747", "reference_id": "RHSA-2007:0747", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0911", "reference_id": "RHSA-2007:0911", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0911" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0005", "reference_id": "RHSA-2008:0005", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0005" }, { "reference_url": "https://usn.ubuntu.com/575-1/", "reference_id": "USN-575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74945?format=api", "purl": "pkg:apache/httpd@2.0.61", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.61" }, { "url": "http://public2.vulnerablecode.io/api/packages/74946?format=api", "purl": "pkg:apache/httpd@2.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.6" } ], "aliases": [ "CVE-2007-3847" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7nz2-dvhg-eud7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50990?format=api", "vulnerability_id": "VCID-8u1f-zan6-13cx", "summary": "A bug was found in the mod_cache module. On sites where caching is enabled, a remote attacker could send a carefully crafted request that would cause the Apache child process handling that request to crash. This could lead to a denial of service if using a threaded Multi-Processing Module.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1863.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1863.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1863", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.27987", "scoring_system": "epss", "scoring_elements": "0.96561", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.27987", "scoring_system": "epss", "scoring_elements": "0.96564", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.27987", "scoring_system": "epss", "scoring_elements": "0.96568", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.27987", "scoring_system": "epss", "scoring_elements": "0.9657", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.27987", "scoring_system": "epss", "scoring_elements": "0.96574", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1863" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=244658", "reference_id": "244658", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=244658" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2007-1863.json", "reference_id": "CVE-2007-1863", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2007-1863.json" }, { "reference_url": "https://security.gentoo.org/glsa/200711-06", "reference_id": "GLSA-200711-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0533", "reference_id": "RHSA-2007:0533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0534", "reference_id": "RHSA-2007:0534", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0534" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0556", "reference_id": "RHSA-2007:0556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0557", "reference_id": "RHSA-2007:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0557" }, { "reference_url": "https://usn.ubuntu.com/499-1/", "reference_id": "USN-499-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/499-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74945?format=api", "purl": "pkg:apache/httpd@2.0.61", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.61" }, { "url": "http://public2.vulnerablecode.io/api/packages/74946?format=api", "purl": "pkg:apache/httpd@2.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.6" } ], "aliases": [ "CVE-2007-1863" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8u1f-zan6-13cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51011?format=api", "vulnerability_id": "VCID-96zk-7c51-vke8", "summary": "A NULL pointer dereference flaw was found in the mod_proxy_ftp module. A malicious FTP server to which requests are being proxied could use this flaw to crash an httpd child process via a malformed reply to the EPSV or PASV commands, resulting in a limited denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3094.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3094.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3094", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86479", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86455", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86478", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86475", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86474", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02833", "scoring_system": "epss", "scoring_elements": "0.86461", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=521619", "reference_id": "521619", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=521619" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545951", "reference_id": "545951", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545951" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-3094.json", "reference_id": "CVE-2009-3094", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-3094.json" }, { "reference_url": "https://usn.ubuntu.com/860-1/", "reference_id": "USN-860-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/860-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74957?format=api", "purl": "pkg:apache/httpd@2.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.14" } ], "aliases": [ "CVE-2009-3094" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96zk-7c51-vke8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50965?format=api", "vulnerability_id": "VCID-a4dn-jm7d-8khm", "summary": "A buffer overflow in the mod_ssl FakeBasicAuth code could be exploited by an attacker using a (trusted) client certificate with a subject DN field which exceeds 6K in length.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0488.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0488.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0488", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.62663", "scoring_system": "epss", "scoring_elements": "0.98397", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.62663", "scoring_system": "epss", "scoring_elements": "0.984", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.62663", "scoring_system": "epss", "scoring_elements": "0.98402", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.62663", "scoring_system": "epss", "scoring_elements": "0.98401", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0488" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0488", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0488" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=430867", "reference_id": "430867", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=430867" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0488.json", "reference_id": "CVE-2004-0488", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0488.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:245", "reference_id": "RHSA-2004:245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:342", "reference_id": "RHSA-2004:342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:405", "reference_id": "RHSA-2004:405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:816", "reference_id": "RHSA-2005:816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74926?format=api", "purl": "pkg:apache/httpd@2.0.50", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-usu5-ajht-jydq" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.50" } ], "aliases": [ "CVE-2004-0488" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a4dn-jm7d-8khm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51012?format=api", "vulnerability_id": "VCID-bhfc-b64s-yue4", "summary": "A flaw was found in the mod_proxy_ftp module. In a reverse proxy configuration, a remote attacker could use this flaw to bypass intended access restrictions by creating a carefully-crafted HTTP Authorization header, allowing the attacker to send arbitrary commands to the FTP server.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3095.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03845", "scoring_system": "epss", "scoring_elements": "0.884", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03845", "scoring_system": "epss", "scoring_elements": "0.88418", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03845", "scoring_system": "epss", "scoring_elements": "0.8842", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03845", "scoring_system": "epss", "scoring_elements": "0.88419", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.03845", "scoring_system": "epss", "scoring_elements": "0.88435", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=522209", "reference_id": "522209", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522209" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545951", "reference_id": "545951", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545951" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-3095.json", "reference_id": "CVE-2009-3095", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-3095.json" }, { "reference_url": "https://usn.ubuntu.com/860-1/", "reference_id": "USN-860-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/860-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74957?format=api", "purl": "pkg:apache/httpd@2.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.14" } ], "aliases": [ "CVE-2009-3095" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bhfc-b64s-yue4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50954?format=api", "vulnerability_id": "VCID-c8m2-71x8-qqcj", "summary": "A bug in the optional renegotiation code in mod_ssl included with Apache httpd can cause cipher suite restrictions to be ignored. This is triggered if optional renegotiation is used (SSLOptions +OptRenegotiate) along with verification of client certificates and a change to the cipher suite over the renegotiation.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13127", "scoring_system": "epss", "scoring_elements": "0.94248", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.13127", "scoring_system": "epss", "scoring_elements": "0.94257", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.13127", "scoring_system": "epss", "scoring_elements": "0.94259", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.13127", "scoring_system": "epss", "scoring_elements": "0.9426", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.13127", "scoring_system": "epss", "scoring_elements": "0.94265", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0192" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616998", "reference_id": "1616998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616998" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0192.json", "reference_id": "CVE-2003-0192", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0192.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:240", "reference_id": "RHSA-2003:240", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:240" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:243", "reference_id": "RHSA-2003:243", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:243" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:244", "reference_id": "RHSA-2003:244", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:244" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:290", "reference_id": "RHSA-2003:290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:301", "reference_id": "RHSA-2003:301", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:301" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74922?format=api", "purl": "pkg:apache/httpd@2.0.47", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.47" } ], "aliases": [ "CVE-2003-0192" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c8m2-71x8-qqcj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51024?format=api", "vulnerability_id": "VCID-cqa7-5n1m-4kem", "summary": "A flaw was found in the way the Apache HTTP Server handled Range HTTP headers. A remote attacker could use this flaw to cause httpd to use an excessive amount of memory and CPU time via HTTP requests with a specially-crafted Range header. This could be used in a denial of service attack. Advisory: CVE-2011-3192.txt", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99626", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.90456", "scoring_system": "epss", "scoring_elements": "0.99625", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.90865", "scoring_system": "epss", "scoring_elements": "0.99645", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3192" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928", "reference_id": "732928", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3192.json", "reference_id": "CVE-2011-3192", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3192.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c", "reference_id": "CVE-2014-5329;OSVDB-74721;CVE-2011-3192", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18221.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl", "reference_id": "CVE-2014-5329;OSVDB-74721;CVE-2011-3192", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/17696.pl" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1245", "reference_id": "RHSA-2011:1245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1294", "reference_id": "RHSA-2011:1294", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1294" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1300", "reference_id": "RHSA-2011:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1329", "reference_id": "RHSA-2011:1329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1330", "reference_id": "RHSA-2011:1330", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1330" }, { "reference_url": "https://usn.ubuntu.com/1199-1/", "reference_id": "USN-1199-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1199-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74967?format=api", "purl": "pkg:apache/httpd@2.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-yqbj-upd2-fbc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.20" } ], "aliases": [ "CVE-2011-3192" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cqa7-5n1m-4kem" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50978?format=api", "vulnerability_id": "VCID-d3ae-zmdq-k7h3", "summary": "An off-by-one stack overflow was discovered in the mod_ssl CRL verification callback. In order to exploit this issue the Apache server would need to be configured to use a malicious certificate revocation list (CRL)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1268.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-1268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04266", "scoring_system": "epss", "scoring_elements": "0.89015", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04266", "scoring_system": "epss", "scoring_elements": "0.89032", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.04266", "scoring_system": "epss", "scoring_elements": "0.89033", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.04266", "scoring_system": "epss", "scoring_elements": "0.89049", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-1268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1268" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617625", "reference_id": "1617625", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617625" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=320048", "reference_id": "320048", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=320048" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-1268.json", "reference_id": "CVE-2005-1268", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-1268.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:582", "reference_id": "RHSA-2005:582", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:582" }, { "reference_url": "https://usn.ubuntu.com/160-1/", "reference_id": "USN-160-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/160-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-1268" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d3ae-zmdq-k7h3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51001?format=api", "vulnerability_id": "VCID-duum-yhkc-83dp", "summary": "A flaw was found in the handling of wildcards in the path of a FTP URL with mod_proxy_ftp. If mod_proxy_ftp is enabled to support FTP-over-HTTP, requests containing globbing characters could lead to cross-site scripting (XSS) attacks.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2939.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2939.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2939", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.6456", "scoring_system": "epss", "scoring_elements": "0.98473", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.6456", "scoring_system": "epss", "scoring_elements": "0.98476", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.6456", "scoring_system": "epss", "scoring_elements": "0.98477", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.6456", "scoring_system": "epss", "scoring_elements": "0.98474", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2939" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2939", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2939" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=458250", "reference_id": "458250", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=458250" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2008-2939.json", "reference_id": "CVE-2008-2939", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2008-2939.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0967", "reference_id": "RHSA-2008:0967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0967" }, { "reference_url": "https://usn.ubuntu.com/731-1/", "reference_id": "USN-731-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/731-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74952?format=api", "purl": "pkg:apache/httpd@2.2.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.10" } ], "aliases": [ "CVE-2008-2939" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-duum-yhkc-83dp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50964?format=api", "vulnerability_id": "VCID-e5ft-x8ra-aqba", "summary": "A starvation issue on listening sockets occurs when a short-lived connection on a rarely-accessed listening socket will cause a child to hold the accept mutex and block out new connections until another connection arrives on that rarely-accessed listening socket. This issue is known to affect some versions of AIX, Solaris, and Tru64; it is known to not affect FreeBSD or Linux.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0174.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0174.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0174", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.9559", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.9558", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.95587", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.95596", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.95592", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.1992", "scoring_system": "epss", "scoring_elements": "0.95593", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0174" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617165", "reference_id": "1617165", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617165" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0174.json", "reference_id": "CVE-2004-0174", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0174.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:405", "reference_id": "RHSA-2004:405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:405" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74925?format=api", "purl": "pkg:apache/httpd@2.0.49", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2r5g-hvsv-j7af" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.49" } ], "aliases": [ "CVE-2004-0174" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e5ft-x8ra-aqba" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50998?format=api", "vulnerability_id": "VCID-e7vc-57g8-1bg8", "summary": "A workaround was added in the mod_proxy_ftp module. On sites where mod_proxy_ftp is enabled and a forward proxy is configured, a cross-site scripting attack is possible against Web browsers which do not correctly derive the response character set following the rules in RFC 2616.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0005.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0005.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0005", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.86243", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.8622", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.8624", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.86241", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.86239", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02726", "scoring_system": "epss", "scoring_elements": "0.86228", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0005" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0005", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0005" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=427739", "reference_id": "427739", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=427739" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2008-0005.json", "reference_id": "CVE-2008-0005", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2008-0005.json" }, { "reference_url": "https://security.gentoo.org/glsa/200803-19", "reference_id": "GLSA-200803-19", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200803-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0004", "reference_id": "RHSA-2008:0004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0005", "reference_id": "RHSA-2008:0005", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0005" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0006", "reference_id": "RHSA-2008:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0007", "reference_id": "RHSA-2008:0007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0008", "reference_id": "RHSA-2008:0008", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0008" }, { "reference_url": "https://usn.ubuntu.com/575-1/", "reference_id": "USN-575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74949?format=api", "purl": "pkg:apache/httpd@2.0.63", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.63" }, { "url": "http://public2.vulnerablecode.io/api/packages/74950?format=api", "purl": "pkg:apache/httpd@2.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.8" } ], "aliases": [ "CVE-2008-0005" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e7vc-57g8-1bg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51020?format=api", "vulnerability_id": "VCID-e8cs-fvsy-b7dd", "summary": "A flaw was found in the apr_brigade_split_line() function of the bundled APR-util library, used to process non-SSL requests. A remote attacker could send requests, carefully crafting the timing of individual bytes, which would slowly consume memory, potentially leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1623.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.28285", "scoring_system": "epss", "scoring_elements": "0.96591", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.28285", "scoring_system": "epss", "scoring_elements": "0.96594", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.28285", "scoring_system": "epss", "scoring_elements": "0.96599", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.28285", "scoring_system": "epss", "scoring_elements": "0.96598", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.28285", "scoring_system": "epss", "scoring_elements": "0.96604", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1623" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=640281", "reference_id": "640281", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=640281" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-1623.json", "reference_id": "CVE-2010-1623", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-1623.json" }, { "reference_url": "https://security.gentoo.org/glsa/201405-24", "reference_id": "GLSA-201405-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-24" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0950", "reference_id": "RHSA-2010:0950", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0950" }, { "reference_url": "https://usn.ubuntu.com/1021-1/", "reference_id": "USN-1021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1021-1/" }, { "reference_url": "https://usn.ubuntu.com/1022-1/", "reference_id": "USN-1022-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1022-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74960?format=api", "purl": "pkg:apache/httpd@2.2.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-yqbj-upd2-fbc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.17" } ], "aliases": [ "CVE-2010-1623" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e8cs-fvsy-b7dd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51027?format=api", "vulnerability_id": "VCID-eb5e-gswe-r7ac", "summary": "An integer overflow flaw was found which, when the mod_setenvif module is enabled, could allow local users to gain privileges via a .htaccess file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3607.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3607", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.4769", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47624", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47688", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47672", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00591", "scoring_system": "epss", "scoring_elements": "0.69627", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00591", "scoring_system": "epss", "scoring_elements": "0.69606", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3607" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3607" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=769844", "reference_id": "769844", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=769844" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-3607.json", "reference_id": "CVE-2011-3607", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-3607.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt", "reference_id": "CVE-2011-4415;CVE-2011-3607", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41769.txt" }, { "reference_url": "http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/", "reference_id": "CVE-2011-4415;CVE-2011-3607", "reference_type": "exploit", "scores": [], "url": "http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74969?format=api", "purl": "pkg:apache/httpd@2.2.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.22" } ], "aliases": [ "CVE-2011-3607" ], "risk_score": 4.2, "exploitability": "2.0", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb5e-gswe-r7ac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50986?format=api", "vulnerability_id": "VCID-epk2-bgkd-sqbt", "summary": "An off-by-one flaw exists in the Rewrite module, mod_rewrite. Depending on the manner in which Apache httpd was compiled, this software defect may result in a vulnerability which, in combination with certain types of Rewrite rules in the web server configuration files, could be triggered remotely. For vulnerable builds, the nature of the vulnerability can be denial of service (crashing of web server processes) or potentially allow arbitrary code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3747.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3747.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-3747", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.90024", "scoring_system": "epss", "scoring_elements": "0.99599", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.90024", "scoring_system": "epss", "scoring_elements": "0.996", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-3747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3747" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=380182", "reference_id": "380182", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=380182" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2006-3747.json", "reference_id": "CVE-2006-3747", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2006-3747.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16752.rb", "reference_id": "CVE-2006-3747;OSVDB-27588", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16752.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/3996.c", "reference_id": "CVE-2006-3747;OSVDB-27588", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/3996.c" }, { "reference_url": "https://security.gentoo.org/glsa/200608-01", "reference_id": "GLSA-200608-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200608-01" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/2237.sh", "reference_id": "OSVDB-27588;CVE-2006-3747", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/2237.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/remote/3680.sh", "reference_id": "OSVDB-27588;CVE-2006-3747", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/remote/3680.sh" }, { "reference_url": "https://usn.ubuntu.com/328-1/", "reference_id": "USN-328-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/328-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74941?format=api", "purl": "pkg:apache/httpd@2.0.59", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.59" }, { "url": "http://public2.vulnerablecode.io/api/packages/74942?format=api", "purl": "pkg:apache/httpd@2.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.3" } ], "aliases": [ "CVE-2006-3747" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-epk2-bgkd-sqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50970?format=api", "vulnerability_id": "VCID-ez9z-bv5z-93dg", "summary": "An issue was discovered in the mod_ssl module in Apache 2.0.44-2.0.50 which could be triggered if the server is configured to allow proxying to a remote SSL server. A malicious remote SSL server could force an httpd child process to crash by sending a carefully crafted response header. This issue is not believed to allow execution of arbitrary code and will only result in a denial of service where a threaded process model is in use.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0751.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0751.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0751", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.47686", "scoring_system": "epss", "scoring_elements": "0.97763", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.47686", "scoring_system": "epss", "scoring_elements": "0.97766", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.47686", "scoring_system": "epss", "scoring_elements": "0.97768", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.47686", "scoring_system": "epss", "scoring_elements": "0.97769", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0751" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0751", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0751" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617264", "reference_id": "1617264", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617264" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0751.json", "reference_id": "CVE-2004-0751", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0751.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/24590.txt", "reference_id": "CVE-2004-0751;OSVDB-9742", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/24590.txt" }, { "reference_url": "https://www.securityfocus.com/bid/11154/info", "reference_id": "CVE-2004-0751;OSVDB-9742", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/11154/info" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:463", "reference_id": "RHSA-2004:463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:463" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74928?format=api", "purl": "pkg:apache/httpd@2.0.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-pyt6-66dq-4bdr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.51" } ], "aliases": [ "CVE-2004-0751" ], "risk_score": 4.2, "exploitability": "2.0", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ez9z-bv5z-93dg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50968?format=api", "vulnerability_id": "VCID-fj2g-epab-7yhu", "summary": "A buffer overflow was found in the expansion of environment variables during configuration file parsing. This issue could allow a local user to gain the privileges of a httpd child if a server can be forced to parse a carefully crafted .htaccess file written by a local user.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0747.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0747.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0747", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.80696", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.8067", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.8071", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.80691", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.80694", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01387", "scoring_system": "epss", "scoring_elements": "0.80699", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0747" }, { "reference_url": "http://www.trustix.org/errata/2004/0047/", "reference_id": "0047", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.trustix.org/errata/2004/0047/" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/1233", "reference_id": "1233", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.vupen.com/english/advisories/2009/1233" }, { "reference_url": "http://secunia.com/advisories/12540", "reference_id": "12540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://secunia.com/advisories/12540" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617261", "reference_id": "1617261", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617261" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384", "reference_id": "17384", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html", "reference_id": "2004_32_apache2.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html" }, { "reference_url": "http://secunia.com/advisories/34920", "reference_id": "34920", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://secunia.com/advisories/34920" }, { "reference_url": "http://www.kb.cert.org/vuls/id/481998", "reference_id": "481998", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.kb.cert.org/vuls/id/481998" }, { "reference_url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E", "reference_id": "54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E", "reference_id": "5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096", "reference_id": "advisory.php?name=MDKSA-2004:096", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0747.json", "reference_id": "CVE-2004-0747", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0747.json" }, { "reference_url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml", "reference_id": "glsa-200409-21.xml", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml" }, { "reference_url": "http://securitytracker.com/id?1011303", "reference_id": "id?1011303", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://securitytracker.com/id?1011303" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561", "reference_id": "oval%3Aorg.mitre.oval%3Adef%3A11561", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561" }, { "reference_url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147", "reference_id": "phpsupcontent?contentID=205147", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147" }, { "reference_url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "reference_id": "r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E", "reference_id": "rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E", "reference_id": "re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "reference_id": "rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:463", "reference_id": "RHSA-2004:463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:463" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2004-463.html", "reference_id": "RHSA-2004-463.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-05T21:31:51Z/" } ], "url": "http://www.redhat.com/support/errata/RHSA-2004-463.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74928?format=api", "purl": "pkg:apache/httpd@2.0.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-pyt6-66dq-4bdr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.51" } ], "aliases": [ "CVE-2004-0747" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fj2g-epab-7yhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50972?format=api", "vulnerability_id": "VCID-fvnc-pg69-8qby", "summary": "An issue was discovered in the mod_dav module which could be triggered for a location where WebDAV authoring access has been configured. A malicious remote client which is authorized to use the LOCK method could force an httpd child process to crash by sending a particular sequence of LOCK requests. This issue does not allow execution of arbitrary code. and will only result in a denial of service where a threaded process model is in use.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0809.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94482", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94471", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94479", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94489", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94483", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.14022", "scoring_system": "epss", "scoring_elements": "0.94484", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0809" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617299", "reference_id": "1617299", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617299" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0809.json", "reference_id": "CVE-2004-0809", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0809.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:463", "reference_id": "RHSA-2004:463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:463" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74928?format=api", "purl": "pkg:apache/httpd@2.0.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-pyt6-66dq-4bdr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.51" } ], "aliases": [ "CVE-2004-0809" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fvnc-pg69-8qby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51009?format=api", "vulnerability_id": "VCID-g837-8mzy-h3be", "summary": "A flaw in apr_palloc() in the bundled copy of APR could cause heap overflows in programs that try to apr_palloc() a user controlled size. The Apache HTTP Server itself does not pass unsanitized user-provided sizes to this function, so it could only be triggered through some other application which uses apr_palloc() in a vulnerable way.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2412.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2412.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2412", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07751", "scoring_system": "epss", "scoring_elements": "0.92097", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.07751", "scoring_system": "epss", "scoring_elements": "0.92088", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.07751", "scoring_system": "epss", "scoring_elements": "0.921", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.07751", "scoring_system": "epss", "scoring_elements": "0.92095", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.10322", "scoring_system": "epss", "scoring_elements": "0.93333", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.10322", "scoring_system": "epss", "scoring_elements": "0.93326", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2412" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=515698", "reference_id": "515698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=515698" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-2412.json", "reference_id": "CVE-2009-2412", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-2412.json" }, { "reference_url": "https://security.gentoo.org/glsa/200909-03", "reference_id": "GLSA-200909-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200909-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1204", "reference_id": "RHSA-2009:1204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1205", "reference_id": "RHSA-2009:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1462", "reference_id": "RHSA-2009:1462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1462" }, { "reference_url": "https://usn.ubuntu.com/813-1/", "reference_id": "USN-813-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/813-1/" }, { "reference_url": "https://usn.ubuntu.com/813-2/", "reference_id": "USN-813-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/813-2/" }, { "reference_url": "https://usn.ubuntu.com/813-3/", "reference_id": "USN-813-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/813-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74956?format=api", "purl": "pkg:apache/httpd@2.2.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.13" } ], "aliases": [ "CVE-2009-2412" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g837-8mzy-h3be" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51000?format=api", "vulnerability_id": "VCID-gbrc-zarh-43bs", "summary": "A flaw was found in the handling of excessive interim responses from an origin server when using mod_proxy_http. A remote attacker could cause a denial of service or high memory usage.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2364.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84796", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84768", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84792", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84793", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84791", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02213", "scoring_system": "epss", "scoring_elements": "0.84779", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2364" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=451615", "reference_id": "451615", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=451615" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2008-2364.json", "reference_id": "CVE-2008-2364", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2008-2364.json" }, { "reference_url": "https://security.gentoo.org/glsa/200807-06", "reference_id": "GLSA-200807-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200807-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0967", "reference_id": "RHSA-2008:0967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0967" }, { "reference_url": "https://usn.ubuntu.com/731-1/", "reference_id": "USN-731-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/731-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74951?format=api", "purl": "pkg:apache/httpd@2.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kjtz-1gtu-dyee" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.9" } ], "aliases": [ "CVE-2008-2364" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gbrc-zarh-43bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51017?format=api", "vulnerability_id": "VCID-gp4e-v2qw-rbh2", "summary": "A flaw was found with within mod_isapi which would attempt to unload the ISAPI dll when it encountered various error states. This could leave the callbacks in an undefined state and result in a segfault. On Windows platforms using mod_isapi, a remote attacker could send a malicious request to trigger this issue, and as win32 MPM runs only one process, this would result in a denial of service, and potentially allow arbitrary code execution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0425", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.86822", "scoring_system": "epss", "scoring_elements": "0.99443", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.86822", "scoring_system": "epss", "scoring_elements": "0.99444", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.86822", "scoring_system": "epss", "scoring_elements": "0.99445", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0425" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-0425.json", "reference_id": "CVE-2010-0425", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-0425.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/11650.c", "reference_id": "CVE-2010-0425;OSVDB-62674", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/11650.c" }, { "reference_url": "http://www.senseofsecurity.com.au/advisories/SOS-10-002", "reference_id": "CVE-2010-0425;OSVDB-62674", "reference_type": "exploit", "scores": [], "url": "http://www.senseofsecurity.com.au/advisories/SOS-10-002" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74958?format=api", "purl": "pkg:apache/httpd@2.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.15" } ], "aliases": [ "CVE-2010-0425" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gp4e-v2qw-rbh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51006?format=api", "vulnerability_id": "VCID-hxw9-84e2-gfez", "summary": "A denial of service flaw was found in the mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1891.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1891.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1891", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18846", "scoring_system": "epss", "scoring_elements": "0.95434", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18846", "scoring_system": "epss", "scoring_elements": "0.95424", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18846", "scoring_system": "epss", "scoring_elements": "0.95431", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18846", "scoring_system": "epss", "scoring_elements": "0.95436", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.20968", "scoring_system": "epss", "scoring_elements": "0.95762", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.20968", "scoring_system": "epss", "scoring_elements": "0.95758", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=509125", "reference_id": "509125", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=509125" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534712", "reference_id": "534712", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534712" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-1891.json", "reference_id": "CVE-2009-1891", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-1891.json" }, { "reference_url": "https://security.gentoo.org/glsa/200907-04", "reference_id": "GLSA-200907-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200907-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1148", "reference_id": "RHSA-2009:1148", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1148" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1155", "reference_id": "RHSA-2009:1155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1160", "reference_id": "RHSA-2009:1160", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1160" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1205", "reference_id": "RHSA-2009:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1205" }, { "reference_url": "https://usn.ubuntu.com/802-1/", "reference_id": "USN-802-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/802-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74954?format=api", "purl": "pkg:apache/httpd@2.2.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.12" } ], "aliases": [ "CVE-2009-1891" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hxw9-84e2-gfez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50963?format=api", "vulnerability_id": "VCID-hzh1-h448-bqdp", "summary": "A memory leak in mod_ssl allows a remote denial of service attack against an SSL-enabled server by sending plain HTTP requests to the SSL port.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0113.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0113.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0113", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.15723", "scoring_system": "epss", "scoring_elements": "0.9484", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.15723", "scoring_system": "epss", "scoring_elements": "0.94849", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.15723", "scoring_system": "epss", "scoring_elements": "0.9485", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.15723", "scoring_system": "epss", "scoring_elements": "0.94851", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.15723", "scoring_system": "epss", "scoring_elements": "0.94856", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0113" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0113", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0113" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617157", "reference_id": "1617157", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617157" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0113.json", "reference_id": "CVE-2004-0113", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0113.json" }, { "reference_url": "https://security.gentoo.org/glsa/200403-04", "reference_id": "GLSA-200403-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200403-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:084", "reference_id": "RHSA-2004:084", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:084" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:182", "reference_id": "RHSA-2004:182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:182" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74925?format=api", "purl": "pkg:apache/httpd@2.0.49", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2r5g-hvsv-j7af" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.49" } ], "aliases": [ "CVE-2004-0113" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzh1-h448-bqdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50994?format=api", "vulnerability_id": "VCID-j9tr-zf8z-2ka8", "summary": "A flaw was found in the mod_status module. On sites where mod_status is enabled and the status pages were publicly accessible, a cross-site scripting attack is possible. Note that the server-status page is not enabled by default and it is best practice to not make this publicly available.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6388.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6388.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6388", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.84619", "scoring_system": "epss", "scoring_elements": "0.99348", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.84619", "scoring_system": "epss", "scoring_elements": "0.9935", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.84619", "scoring_system": "epss", "scoring_elements": "0.99351", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6388" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=427228", "reference_id": "427228", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=427228" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2007-6388.json", "reference_id": "CVE-2007-6388", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2007-6388.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0004", "reference_id": "RHSA-2008:0004", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0004" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0005", "reference_id": "RHSA-2008:0005", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0005" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0006", "reference_id": "RHSA-2008:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0007", "reference_id": "RHSA-2008:0007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0008", "reference_id": "RHSA-2008:0008", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0008" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0263", "reference_id": "RHSA-2008:0263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" }, { "reference_url": "https://usn.ubuntu.com/575-1/", "reference_id": "USN-575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74949?format=api", "purl": "pkg:apache/httpd@2.0.63", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.63" }, { "url": "http://public2.vulnerablecode.io/api/packages/74950?format=api", "purl": "pkg:apache/httpd@2.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.8" } ], "aliases": [ "CVE-2007-6388" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j9tr-zf8z-2ka8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51038?format=api", "vulnerability_id": "VCID-m4t4-3fjk-s3gq", "summary": "mod_rewrite does not filter terminal escape sequences from logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1862.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1862.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1862", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.52396", "scoring_system": "epss", "scoring_elements": "0.97981", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.52396", "scoring_system": "epss", "scoring_elements": "0.97984", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.52396", "scoring_system": "epss", "scoring_elements": "0.97983", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.52396", "scoring_system": "epss", "scoring_elements": "0.97982", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1862" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=953729", "reference_id": "953729", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=953729" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2013-1862.json", "reference_id": "CVE-2013-1862", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2013-1862.json" }, { "reference_url": "https://security.gentoo.org/glsa/201309-12", "reference_id": "GLSA-201309-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-12" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:0815", "reference_id": "RHSA-2013:0815", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:0815" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1133", "reference_id": "RHSA-2013:1133", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1133" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1134", "reference_id": "RHSA-2013:1134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1134" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1207", "reference_id": "RHSA-2013:1207", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1207" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1208", "reference_id": "RHSA-2013:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1209", "reference_id": "RHSA-2013:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1209" }, { "reference_url": "https://usn.ubuntu.com/1903-1/", "reference_id": "USN-1903-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1903-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74976?format=api", "purl": "pkg:apache/httpd@2.2.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.25" } ], "aliases": [ "CVE-2013-1862" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m4t4-3fjk-s3gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50979?format=api", "vulnerability_id": "VCID-n1m6-gf2z-pkbh", "summary": "A flaw occured when using the Apache server as a HTTP proxy. A remote attacker could send a HTTP request with both a \"Transfer-Encoding: chunked\" header and a Content-Length header, causing Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request. This could allow the bypass of web application firewall protection or lead to cross-site scripting (XSS) attacks.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2088.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.39952", "scoring_system": "epss", "scoring_elements": "0.97406", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.39952", "scoring_system": "epss", "scoring_elements": "0.97412", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.39952", "scoring_system": "epss", "scoring_elements": "0.97413", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.39952", "scoring_system": "epss", "scoring_elements": "0.97414", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.39952", "scoring_system": "epss", "scoring_elements": "0.97415", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2088" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2088", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2088" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617682", "reference_id": "1617682", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617682" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=316173", "reference_id": "316173", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=316173" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2088.json", "reference_id": "CVE-2005-2088", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2088.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:582", "reference_id": "RHSA-2005:582", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:582" }, { "reference_url": "https://usn.ubuntu.com/160-1/", "reference_id": "USN-160-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/160-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-2088" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n1m6-gf2z-pkbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51030?format=api", "vulnerability_id": "VCID-pmn2-fj7y-ubha", "summary": "A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0031.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0031", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01044", "scoring_system": "epss", "scoring_elements": "0.77849", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01044", "scoring_system": "epss", "scoring_elements": "0.77816", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01044", "scoring_system": "epss", "scoring_elements": "0.77843", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01044", "scoring_system": "epss", "scoring_elements": "0.7784", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01499", "scoring_system": "epss", "scoring_elements": "0.81498", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.01499", "scoring_system": "epss", "scoring_elements": "0.81482", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0031" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0031" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=773744", "reference_id": "773744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=773744" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt", "reference_id": "CVE-2012-0031", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/41768.txt" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2012-0031.json", "reference_id": "CVE-2012-0031", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2012-0031.json" }, { "reference_url": "http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/", "reference_id": "CVE-2012-0031", "reference_type": "exploit", "scores": [], "url": "http://www.halfdog.net/Security/2011/ApacheScoreboardInvalidFreeOnShutdown/" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0128", "reference_id": "RHSA-2012:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0323", "reference_id": "RHSA-2012:0323", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0323" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0542", "reference_id": "RHSA-2012:0542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0543", "reference_id": "RHSA-2012:0543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0543" }, { "reference_url": "https://usn.ubuntu.com/1368-1/", "reference_id": "USN-1368-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1368-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74969?format=api", "purl": "pkg:apache/httpd@2.2.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.22" } ], "aliases": [ "CVE-2012-0031" ], "risk_score": 4.2, "exploitability": "2.0", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pmn2-fj7y-ubha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50991?format=api", "vulnerability_id": "VCID-q44z-7zkg-8yf9", "summary": "The Apache HTTP server did not verify that a process was an Apache child process before sending it signals. A local attacker with the ability to run scripts on the HTTP server could manipulate the scoreboard and cause arbitrary processes to be terminated which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3304.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3304.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3304", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27011", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27018", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26931", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26924", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3304" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3304", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3304" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=245111", "reference_id": "245111", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245111" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2007-3304.json", "reference_id": "CVE-2007-3304", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2007-3304.json" }, { "reference_url": "https://security.gentoo.org/glsa/200711-06", "reference_id": "GLSA-200711-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0532", "reference_id": "RHSA-2007:0532", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0532" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0556", "reference_id": "RHSA-2007:0556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0557", "reference_id": "RHSA-2007:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0662", "reference_id": "RHSA-2007:0662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0263", "reference_id": "RHSA-2008:0263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" }, { "reference_url": "https://usn.ubuntu.com/499-1/", "reference_id": "USN-499-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/499-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74945?format=api", "purl": "pkg:apache/httpd@2.0.61", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.61" }, { "url": "http://public2.vulnerablecode.io/api/packages/74946?format=api", "purl": "pkg:apache/httpd@2.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.6" } ], "aliases": [ "CVE-2007-3304" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q44z-7zkg-8yf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50984?format=api", "vulnerability_id": "VCID-q52r-nhkh-a7ab", "summary": "A flaw in mod_imap when using the Referer directive with image maps. In certain site configurations a remote attacker could perform a cross-site scripting attack if a victim can be forced to visit a malicious URL using certain web browsers.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3352.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3352.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3352", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.2814", "scoring_system": "epss", "scoring_elements": "0.96581", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.2814", "scoring_system": "epss", "scoring_elements": "0.96584", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.2814", "scoring_system": "epss", "scoring_elements": "0.96589", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.2814", "scoring_system": "epss", "scoring_elements": "0.9659", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.2814", "scoring_system": "epss", "scoring_elements": "0.96595", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-3352" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=343467", "reference_id": "343467", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=343467" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=430524", "reference_id": "430524", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=430524" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-3352.json", "reference_id": "CVE-2005-3352", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-3352.json" }, { "reference_url": "https://security.gentoo.org/glsa/200602-03", "reference_id": "GLSA-200602-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200602-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:882", "reference_id": "RHSA-2005:882", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:882" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0158", "reference_id": "RHSA-2006:0158", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0158" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0159", "reference_id": "RHSA-2006:0159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0159" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0692", "reference_id": "RHSA-2006:0692", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" }, { "reference_url": "https://usn.ubuntu.com/241-1/", "reference_id": "USN-241-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/241-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74937?format=api", "purl": "pkg:apache/httpd@2.0.58", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.58" }, { "url": "http://public2.vulnerablecode.io/api/packages/74938?format=api", "purl": "pkg:apache/httpd@2.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.2" } ], "aliases": [ "CVE-2005-3352" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q52r-nhkh-a7ab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50988?format=api", "vulnerability_id": "VCID-q9d7-7krq-mfdq", "summary": "A flaw was found in the mod_status module. On sites where the server-status page is publicly accessible and ExtendedStatus is enabled this could lead to a cross-site scripting attack. Note that the server-status page is not enabled by default and it is best practice to not make this publicly available.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5752.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5752.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-5752", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18368", "scoring_system": "epss", "scoring_elements": "0.9535", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18368", "scoring_system": "epss", "scoring_elements": "0.95358", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18368", "scoring_system": "epss", "scoring_elements": "0.95361", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18368", "scoring_system": "epss", "scoring_elements": "0.95363", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.18368", "scoring_system": "epss", "scoring_elements": "0.95367", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-5752" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5752", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5752" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=245112", "reference_id": "245112", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245112" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2006-5752.json", "reference_id": "CVE-2006-5752", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2006-5752.json" }, { "reference_url": "https://security.gentoo.org/glsa/200711-06", "reference_id": "GLSA-200711-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200711-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0532", "reference_id": "RHSA-2007:0532", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0532" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0533", "reference_id": "RHSA-2007:0533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0534", "reference_id": "RHSA-2007:0534", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0534" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0556", "reference_id": "RHSA-2007:0556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0557", "reference_id": "RHSA-2007:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0263", "reference_id": "RHSA-2008:0263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0523", "reference_id": "RHSA-2008:0523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0523" }, { "reference_url": "https://usn.ubuntu.com/499-1/", "reference_id": "USN-499-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/499-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74945?format=api", "purl": "pkg:apache/httpd@2.0.61", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.61" }, { "url": "http://public2.vulnerablecode.io/api/packages/74946?format=api", "purl": "pkg:apache/httpd@2.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-2zx1-eaw8-kfgd" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5275-kg9r-n7a2" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-6935-ywb6-nyck" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cahj-gqba-7ba1" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-dwje-udsm-rkhm" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-e8yy-ycez-tbfz" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-r9vj-qa89-hqan" }, { "vulnerability": "VCID-ra8d-gxqs-cbgy" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xjg8-efyu-9qff" }, { "vulnerability": "VCID-xkdh-s6na-kqdc" }, { "vulnerability": "VCID-xpkn-zawt-ruh4" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.6" } ], "aliases": [ "CVE-2006-5752" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q9d7-7krq-mfdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51023?format=api", "vulnerability_id": "VCID-t1ad-c6y2-rueb", "summary": "A flaw was found in the apr_fnmatch() function of the bundled APR library. Where mod_autoindex is enabled, and a directory indexed by mod_autoindex contained files with sufficiently long names, a remote attacker could send a carefully crafted request which would cause excessive CPU usage. This could be used in a denial of service attack.\nWorkaround: Setting the 'IgnoreClient' option to the 'IndexOptions' directive disables processing of the client-supplied request query arguments, preventing this attack.\nResolution: Update APR to release 1.4.5 (bundled with httpd 2.2.19) or release 0.9.20 (bundled with httpd 2.0.65)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0419.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0419.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0419", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.48782", "scoring_system": "epss", "scoring_elements": "0.97814", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.48782", "scoring_system": "epss", "scoring_elements": "0.97818", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.48782", "scoring_system": "epss", "scoring_elements": "0.97819", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.48782", "scoring_system": "epss", "scoring_elements": "0.9782", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.48782", "scoring_system": "epss", "scoring_elements": "0.97821", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0419" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=703390", "reference_id": "703390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=703390" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2011-0419.json", "reference_id": "CVE-2011-0419", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2011-0419.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35738.php", "reference_id": "CVE-2011-0419;OSVDB-73383", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35738.php" }, { "reference_url": "https://www.securityfocus.com/bid/47820/info", "reference_id": "CVE-2011-0419;OSVDB-73383", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/47820/info" }, { "reference_url": "https://security.gentoo.org/glsa/201405-24", "reference_id": "GLSA-201405-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-24" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0507", "reference_id": "RHSA-2011:0507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0507" }, { "reference_url": "https://usn.ubuntu.com/1134-1/", "reference_id": "USN-1134-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1134-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74965?format=api", "purl": "pkg:apache/httpd@2.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/74966?format=api", "purl": "pkg:apache/httpd@2.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-yqbj-upd2-fbc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.19" } ], "aliases": [ "CVE-2011-0419" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t1ad-c6y2-rueb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50982?format=api", "vulnerability_id": "VCID-te32-paf8-zqfa", "summary": "A flaw in the byterange filter would cause some responses to be buffered into memory. If a server has a dynamic resource such as a CGI script or PHP script which generates a large amount of data, an attacker could send carefully crafted requests in order to consume resources, potentially leading to a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2728.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2728.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2728", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.61794", "scoring_system": "epss", "scoring_elements": "0.98359", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.61794", "scoring_system": "epss", "scoring_elements": "0.98362", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.61794", "scoring_system": "epss", "scoring_elements": "0.98364", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2728" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617753", "reference_id": "1617753", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617753" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326435", "reference_id": "326435", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326435" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2728.json", "reference_id": "CVE-2005-2728", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2728.json" }, { "reference_url": "https://security.gentoo.org/glsa/200508-15", "reference_id": "GLSA-200508-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200508-15" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:608", "reference_id": "RHSA-2005:608", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:608" }, { "reference_url": "https://usn.ubuntu.com/177-1/", "reference_id": "USN-177-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/177-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-2728" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-te32-paf8-zqfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50980?format=api", "vulnerability_id": "VCID-tkcs-1ynw-fbfz", "summary": "An integer overflow flaw was found in PCRE, a Perl-compatible regular expression library included within httpd. A local user who has the ability to create .htaccess files could create a maliciously crafted regular expression in such as way that they could gain the privileges of a httpd child.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2491.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2491.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2491", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83986", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.8396", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83983", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83985", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83981", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01997", "scoring_system": "epss", "scoring_elements": "0.83972", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2491" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324531", "reference_id": "324531", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324531" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326628", "reference_id": "326628", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326628" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326898", "reference_id": "326898", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326898" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=430638", "reference_id": "430638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=430638" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2491.json", "reference_id": "CVE-2005-2491", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2491.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:358", "reference_id": "RHSA-2005:358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:761", "reference_id": "RHSA-2005:761", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:761" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0197", "reference_id": "RHSA-2006:0197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0197" }, { "reference_url": "https://usn.ubuntu.com/173-1/", "reference_id": "USN-173-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-1/" }, { "reference_url": "https://usn.ubuntu.com/173-2/", "reference_id": "USN-173-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-2/" }, { "reference_url": "https://usn.ubuntu.com/173-4/", "reference_id": "USN-173-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/173-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-2491" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tkcs-1ynw-fbfz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50971?format=api", "vulnerability_id": "VCID-w6ux-1ak9-x3fd", "summary": "Testing using the Codenomicon HTTP Test Tool performed by the Apache Software Foundation security group and Red Hat uncovered an input validation issue in the IPv6 URI parsing routines in the apr-util library. If a remote attacker sent a request including a carefully crafted URI, an httpd child process could be made to crash. One some BSD systems it is believed this flaw may be able to lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0786.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0786.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0786", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.48362", "scoring_system": "epss", "scoring_elements": "0.97797", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.48362", "scoring_system": "epss", "scoring_elements": "0.97801", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.48362", "scoring_system": "epss", "scoring_elements": "0.97802", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.48362", "scoring_system": "epss", "scoring_elements": "0.97803", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0786" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0786", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0786" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617289", "reference_id": "1617289", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617289" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-0786.json", "reference_id": "CVE-2004-0786", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-0786.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:463", "reference_id": "RHSA-2004:463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:463" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74928?format=api", "purl": "pkg:apache/httpd@2.0.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-pyt6-66dq-4bdr" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.51" } ], "aliases": [ "CVE-2004-0786" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w6ux-1ak9-x3fd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50981?format=api", "vulnerability_id": "VCID-wf9p-5bhr-s3bt", "summary": "A flaw in the mod_ssl handling of the \"SSLVerifyClient\" directive. This flaw would occur if a virtual host has been configured using \"SSLVerifyClient optional\" and further a directive \"SSLVerifyClient required\" is set for a specific location. For servers configured in this fashion, an attacker may be able to access resources that should otherwise be protected, by not supplying a client certificate when connecting.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2700.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2700.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2700", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94717", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94707", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94715", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94724", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94718", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.15081", "scoring_system": "epss", "scoring_elements": "0.94719", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-2700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2700" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617741", "reference_id": "1617741", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617741" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327210", "reference_id": "327210", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327210" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2005-2700.json", "reference_id": "CVE-2005-2700", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2005-2700.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:608", "reference_id": "RHSA-2005:608", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:608" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:773", "reference_id": "RHSA-2005:773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:816", "reference_id": "RHSA-2005:816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2005:882", "reference_id": "RHSA-2005:882", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2005:882" }, { "reference_url": "https://usn.ubuntu.com/177-1/", "reference_id": "USN-177-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/177-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74933?format=api", "purl": "pkg:apache/httpd@2.0.55", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.55" } ], "aliases": [ "CVE-2005-2700" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wf9p-5bhr-s3bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51013?format=api", "vulnerability_id": "VCID-x7n6-pzrs-nugs", "summary": "A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3560", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.86857", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.86837", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.8686", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.86856", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.86854", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03008", "scoring_system": "epss", "scoring_elements": "0.86844", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3560" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=533174", "reference_id": "533174", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=533174" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901", "reference_id": "560901", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919", "reference_id": "560919", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920", "reference_id": "560920", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921", "reference_id": "560921", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922", "reference_id": "560922", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926", "reference_id": "560926", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927", "reference_id": "560927", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928", "reference_id": "560928", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929", "reference_id": "560929", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930", "reference_id": "560930", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935", "reference_id": "560935", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936", "reference_id": "560936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937", "reference_id": "560937", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940", "reference_id": "560940", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942", "reference_id": "560942", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053", "reference_id": "601053", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2009-3560.json", "reference_id": "CVE-2009-3560", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2009-3560.json" }, { "reference_url": "https://security.gentoo.org/glsa/201209-06", "reference_id": "GLSA-201209-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1625", "reference_id": "RHSA-2009:1625", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1625" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3239", "reference_id": "RHSA-2017:3239", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3239" }, { "reference_url": "https://usn.ubuntu.com/890-1/", "reference_id": "USN-890-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-1/" }, { "reference_url": "https://usn.ubuntu.com/890-2/", "reference_id": "USN-890-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-2/" }, { "reference_url": "https://usn.ubuntu.com/890-3/", "reference_id": "USN-890-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-3/" }, { "reference_url": "https://usn.ubuntu.com/890-4/", "reference_id": "USN-890-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-4/" }, { "reference_url": "https://usn.ubuntu.com/890-5/", "reference_id": "USN-890-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-5/" }, { "reference_url": "https://usn.ubuntu.com/890-6/", "reference_id": "USN-890-6", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/890-6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74960?format=api", "purl": "pkg:apache/httpd@2.2.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-yqbj-upd2-fbc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.17" } ], "aliases": [ "CVE-2009-3560" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x7n6-pzrs-nugs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50960?format=api", "vulnerability_id": "VCID-xzgb-7x15-ebcg", "summary": "A bug in mod_cgid mishandling of CGI redirect paths can result in CGI output going to the wrong client when a threaded MPM is used.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0789.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0789.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0789", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92379", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92369", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92383", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92392", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92375", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.08237", "scoring_system": "epss", "scoring_elements": "0.92374", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0789" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0789", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0789" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617086", "reference_id": "1617086", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617086" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0789.json", "reference_id": "CVE-2003-0789", "reference_type": "", "scores": [ { "value": "moderate", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0789.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:320", "reference_id": "RHSA-2003:320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:320" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74923?format=api", "purl": "pkg:apache/httpd@2.0.48", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.48" } ], "aliases": [ "CVE-2003-0789" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzgb-7x15-ebcg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50977?format=api", "vulnerability_id": "VCID-yasn-5aw4-ryfc", "summary": "The experimental mod_disk_cache module stored client authentication credentials for cached objects such as proxy authentication credentials and Basic Authentication passwords on disk.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1834.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1834.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-1834", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40327", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40243", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40325", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40285", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.403", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.4027", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-1834" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1834", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1834" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617419", "reference_id": "1617419", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617419" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2004-1834.json", "reference_id": "CVE-2004-1834", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2004-1834.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:562", "reference_id": "RHSA-2004:562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:562" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74930?format=api", "purl": "pkg:apache/httpd@2.0.53", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.53" } ], "aliases": [ "CVE-2004-1834" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yasn-5aw4-ryfc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51019?format=api", "vulnerability_id": "VCID-yekj-h6m9-nkbj", "summary": "A flaw was found in the handling of requests by mod_cache (2.2) and mod_dav (2.0 and 2.2). A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon \"CacheIgnoreURLSessionIdentifiers\" directive, introduced in version 2.2.14, is used.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1452.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1452", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.94442", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.94432", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.9444", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.9445", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.94444", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.13868", "scoring_system": "epss", "scoring_elements": "0.94445", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1452" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1452" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=618189", "reference_id": "618189", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=618189" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-1452.json", "reference_id": "CVE-2010-1452", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-1452.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0659", "reference_id": "RHSA-2010:0659", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0659" }, { "reference_url": "https://usn.ubuntu.com/1021-1/", "reference_id": "USN-1021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1021-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74959?format=api", "purl": "pkg:apache/httpd@2.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.16" } ], "aliases": [ "CVE-2010-1452" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yekj-h6m9-nkbj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51018?format=api", "vulnerability_id": "VCID-ywm9-1fbh-5qen", "summary": "A flaw in the core subrequest process code was fixed, to always provide a shallow copy of the headers_in array to the subrequest, instead of a pointer to the parent request's array as it had for requests without request bodies. This meant all modules such as mod_headers which may manipulate the input headers for a subrequest would poison the parent request in two ways, one by modifying the parent request, which might not be intended, and second by leaving pointers to modified header fields in memory allocated to the subrequest scope, which could be freed before the main request processing was finished, resulting in a segfault or in revealing data from another request on threaded servers, such as the worker or winnt MPMs.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0539", "scoring_system": "epss", "scoring_elements": "0.90285", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0539", "scoring_system": "epss", "scoring_elements": "0.903", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0539", "scoring_system": "epss", "scoring_elements": "0.90298", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0539", "scoring_system": "epss", "scoring_elements": "0.90297", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0539", "scoring_system": "epss", "scoring_elements": "0.90312", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=570171", "reference_id": "570171", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=570171" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2010-0434.json", "reference_id": "CVE-2010-0434", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2010-0434.json" }, { "reference_url": "https://security.gentoo.org/glsa/201206-25", "reference_id": "GLSA-201206-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0168", "reference_id": "RHSA-2010:0168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0175", "reference_id": "RHSA-2010:0175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0396", "reference_id": "RHSA-2010:0396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0396" }, { "reference_url": "https://usn.ubuntu.com/908-1/", "reference_id": "USN-908-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/908-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74955?format=api", "purl": "pkg:apache/httpd@2.0.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/74958?format=api", "purl": "pkg:apache/httpd@2.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-189a-yyhy-q7ds" }, { "vulnerability": "VCID-1cpt-rd7f-8qhk" }, { "vulnerability": "VCID-1xb5-reys-d7fb" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-4yze-nb6e-8yav" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-5y32-wcg3-sybr" }, { "vulnerability": "VCID-6b2z-q7qe-gbeg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7pxs-sc8s-8fg2" }, { "vulnerability": "VCID-8qu7-pwaj-yqhq" }, { "vulnerability": "VCID-b44m-f3y9-kqag" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-csqk-utue-9yeq" }, { "vulnerability": "VCID-da7f-7vn1-gffu" }, { "vulnerability": "VCID-duan-fz4r-uydy" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-f4m5-bj25-pbhy" }, { "vulnerability": "VCID-fg75-4dwv-9qb5" }, { "vulnerability": "VCID-j5r1-q5tv-xqcp" }, { "vulnerability": "VCID-kb48-61na-cyap" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-nn89-pb36-v7ds" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-ps1g-6hy7-87dr" }, { "vulnerability": "VCID-rhy7-r84u-gbfc" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-t8c4-wnuw-6bfd" }, { "vulnerability": "VCID-um53-bb17-93fp" }, { "vulnerability": "VCID-vb2q-wweb-37gz" }, { "vulnerability": "VCID-wey2-jc8u-zudk" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-yyhr-sksr-4fdb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.2.15" } ], "aliases": [ "CVE-2010-0434" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ywm9-1fbh-5qen" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50953?format=api", "vulnerability_id": "VCID-7k1z-aajc-wug1", "summary": "A build system problem in Apache 2.0.40 through 2.0.45 allows remote attackers to cause a denial of access to authenticated content when a threaded server is used.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0189.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0189.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0189", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.17927", "scoring_system": "epss", "scoring_elements": "0.95271", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.17927", "scoring_system": "epss", "scoring_elements": "0.95278", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.17927", "scoring_system": "epss", "scoring_elements": "0.9528", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.17927", "scoring_system": "epss", "scoring_elements": "0.95283", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.17927", "scoring_system": "epss", "scoring_elements": "0.95287", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0189" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0189", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0189" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616996", "reference_id": "1616996", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616996" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0189.json", "reference_id": "CVE-2003-0189", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0189.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:186", "reference_id": "RHSA-2003:186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:186" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74921?format=api", "purl": "pkg:apache/httpd@2.0.46", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2uqs-jk6y-a7ay" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-44yz-runu-27aw" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-c8m2-71x8-qqcj" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.46" } ], "aliases": [ "CVE-2003-0189" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7k1z-aajc-wug1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50950?format=api", "vulnerability_id": "VCID-kuf5-fz1u-jyb7", "summary": "Apache did not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0083.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0083.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0083", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.12356", "scoring_system": "epss", "scoring_elements": "0.94014", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.12356", "scoring_system": "epss", "scoring_elements": "0.94023", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.12356", "scoring_system": "epss", "scoring_elements": "0.94022", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.12356", "scoring_system": "epss", "scoring_elements": "0.94024", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.12356", "scoring_system": "epss", "scoring_elements": "0.94029", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0083" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0083" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616961", "reference_id": "1616961", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616961" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0083.json", "reference_id": "CVE-2003-0083", "reference_type": "", "scores": [ { "value": "low", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0083.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:083", "reference_id": "RHSA-2003:083", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:083" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:104", "reference_id": "RHSA-2003:104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:116", "reference_id": "RHSA-2003:116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:139", "reference_id": "RHSA-2003:139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:139" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74910?format=api", "purl": "pkg:apache/httpd@1.3.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1q9k-zar2-4kc6" }, { "vulnerability": "VCID-1wue-77wz-43h9" }, { "vulnerability": "VCID-34wk-axr2-e3bc" }, { "vulnerability": "VCID-3suy-yf9s-rkak" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-d4sz-y8fw-jbea" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-kbgy-cuan-53b1" }, { "vulnerability": "VCID-p94p-gxrj-wubz" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-rcvk-ep43-uqbt" }, { "vulnerability": "VCID-umaz-r4sc-d3dn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@1.3.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/74921?format=api", "purl": "pkg:apache/httpd@2.0.46", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2uqs-jk6y-a7ay" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-44yz-runu-27aw" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-c8m2-71x8-qqcj" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.46" } ], "aliases": [ "CVE-2003-0083" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kuf5-fz1u-jyb7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50955?format=api", "vulnerability_id": "VCID-nhkt-f6zh-rugp", "summary": "A vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML objects to mod_dav, and possibly other vectors.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0245.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0245.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0245", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.84076", "scoring_system": "epss", "scoring_elements": "0.99321", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.84076", "scoring_system": "epss", "scoring_elements": "0.99322", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.84076", "scoring_system": "epss", "scoring_elements": "0.99323", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.84076", "scoring_system": "epss", "scoring_elements": "0.99324", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0245" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0245", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0245" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617006", "reference_id": "1617006", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617006" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0245.json", "reference_id": "CVE-2003-0245", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0245.json" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/38.pl", "reference_id": "OSVDB-4340;CVE-2003-0245", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/38.pl" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:186", "reference_id": "RHSA-2003:186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:186" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74921?format=api", "purl": "pkg:apache/httpd@2.0.46", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2uqs-jk6y-a7ay" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-44yz-runu-27aw" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-c8m2-71x8-qqcj" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.46" } ], "aliases": [ "CVE-2003-0245" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nhkt-f6zh-rugp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50952?format=api", "vulnerability_id": "VCID-rnpv-fydm-hkhy", "summary": "Apache on OS2 up to and including Apache 2.0.45 have a Denial of Service vulnerability caused by device names.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0134", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90412", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90397", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90411", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90424", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90408", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.05508", "scoring_system": "epss", "scoring_elements": "0.90407", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2003-0134" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0134", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0134" }, { "reference_url": "https://httpd.apache.org/security/json/CVE-2003-0134.json", "reference_id": "CVE-2003-0134", "reference_type": "", "scores": [ { "value": "important", "scoring_system": "apache_httpd", "scoring_elements": "" } ], "url": "https://httpd.apache.org/security/json/CVE-2003-0134.json" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74921?format=api", "purl": "pkg:apache/httpd@2.0.46", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-19s8-6qpv-23fx" }, { "vulnerability": "VCID-2n6m-jrjj-73gb" }, { "vulnerability": "VCID-2uqs-jk6y-a7ay" }, { "vulnerability": "VCID-425q-pchy-2yfg" }, { "vulnerability": "VCID-44yz-runu-27aw" }, { "vulnerability": "VCID-4e53-zbp1-zqa5" }, { "vulnerability": "VCID-59vv-rvws-7yb6" }, { "vulnerability": "VCID-5h45-6kty-ffhm" }, { "vulnerability": "VCID-63gb-krwm-xqgg" }, { "vulnerability": "VCID-69kb-xdhf-h7hp" }, { "vulnerability": "VCID-72zv-psyw-vbh7" }, { "vulnerability": "VCID-7f75-bedw-efbb" }, { "vulnerability": "VCID-7nz2-dvhg-eud7" }, { "vulnerability": "VCID-8u1f-zan6-13cx" }, { "vulnerability": "VCID-96zk-7c51-vke8" }, { "vulnerability": "VCID-a4dn-jm7d-8khm" }, { "vulnerability": "VCID-bhfc-b64s-yue4" }, { "vulnerability": "VCID-c8m2-71x8-qqcj" }, { "vulnerability": "VCID-cqa7-5n1m-4kem" }, { "vulnerability": "VCID-d3ae-zmdq-k7h3" }, { "vulnerability": "VCID-duum-yhkc-83dp" }, { "vulnerability": "VCID-e5ft-x8ra-aqba" }, { "vulnerability": "VCID-e7vc-57g8-1bg8" }, { "vulnerability": "VCID-e8cs-fvsy-b7dd" }, { "vulnerability": "VCID-eb5e-gswe-r7ac" }, { "vulnerability": "VCID-epk2-bgkd-sqbt" }, { "vulnerability": "VCID-ez9z-bv5z-93dg" }, { "vulnerability": "VCID-fj2g-epab-7yhu" }, { "vulnerability": "VCID-fvnc-pg69-8qby" }, { "vulnerability": "VCID-g837-8mzy-h3be" }, { "vulnerability": "VCID-gbrc-zarh-43bs" }, { "vulnerability": "VCID-gp4e-v2qw-rbh2" }, { "vulnerability": "VCID-hxw9-84e2-gfez" }, { "vulnerability": "VCID-hzh1-h448-bqdp" }, { "vulnerability": "VCID-j9tr-zf8z-2ka8" }, { "vulnerability": "VCID-m4t4-3fjk-s3gq" }, { "vulnerability": "VCID-n1m6-gf2z-pkbh" }, { "vulnerability": "VCID-pmn2-fj7y-ubha" }, { "vulnerability": "VCID-q44z-7zkg-8yf9" }, { "vulnerability": "VCID-q52r-nhkh-a7ab" }, { "vulnerability": "VCID-q9d7-7krq-mfdq" }, { "vulnerability": "VCID-t1ad-c6y2-rueb" }, { "vulnerability": "VCID-te32-paf8-zqfa" }, { "vulnerability": "VCID-tkcs-1ynw-fbfz" }, { "vulnerability": "VCID-w6ux-1ak9-x3fd" }, { "vulnerability": "VCID-wf9p-5bhr-s3bt" }, { "vulnerability": "VCID-x7n6-pzrs-nugs" }, { "vulnerability": "VCID-xzgb-7x15-ebcg" }, { "vulnerability": "VCID-yasn-5aw4-ryfc" }, { "vulnerability": "VCID-yekj-h6m9-nkbj" }, { "vulnerability": "VCID-ywm9-1fbh-5qen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.46" } ], "aliases": [ "CVE-2003-0134" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rnpv-fydm-hkhy" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/httpd@2.0.46" }