Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/www-servers/apache@2.4.23

Type ebuild

Namespace www-servers

Name apache

Version 2.4.23

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.4.25

Latest_non_vulnerable_version 2.4.62

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-7zer-dq7c-8ffq

vulnerability_id VCID-7zer-dq7c-8ffq

summary For configurations enabling support for HTTP/2, SSL client certificate validation was not enforced if configured, allowing clients unauthorized access to protected resources over HTTP/2. This issue affected releases 2.4.18 and 2.4.20 only.

references

reference_url	http://httpd.apache.org/security/vulnerabilities_24.html
reference_id
reference_type
scores
url	http://httpd.apache.org/security/vulnerabilities_24.html

reference_url	http://packetstormsecurity.com/files/137771/Apache-2.4.20-X509-Authentication-Bypass.html
reference_id
reference_type
scores
url	http://packetstormsecurity.com/files/137771/Apache-2.4.20-X509-Authentication-Bypass.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4979.json

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4979.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4979

reference_id

reference_type

scores

value	0.1736
scoring_system	epss
scoring_elements	0.95022
published_at	2026-04-01T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95057
published_at	2026-04-13T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95044
published_at	2026-04-08T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95048
published_at	2026-04-09T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95053
published_at	2026-04-11T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95055
published_at	2026-04-12T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95033
published_at	2026-04-02T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95034
published_at	2026-04-04T12:55:00Z

value	0.1736
scoring_system	epss
scoring_elements	0.95036
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4979

reference_url	http://seclists.org/fulldisclosure/2016/Jul/11
reference_id
reference_type
scores
url	http://seclists.org/fulldisclosure/2016/Jul/11

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:C/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/apache/httpd/commit/2d0e4eff04ea963128a41faaef21f987272e05a2
reference_id
reference_type
scores
url	https://github.com/apache/httpd/commit/2d0e4eff04ea963128a41faaef21f987272e05a2

reference_url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r04e89e873d54116a0635ef2f7061c15acc5ed27ef7500997beb65d6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r04e89e873d54116a0635ef2f7061c15acc5ed27ef7500997beb65d6f%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/re1e3a24664d35bcd0a0e793e0b5fc6ca6c107f99a1b2c545c5d4b467%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/re1e3a24664d35bcd0a0e793e0b5fc6ca6c107f99a1b2c545c5d4b467%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E

reference_url	https://security.netapp.com/advisory/ntap-20180601-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20180601-0001/

reference_url	http://www.apache.org/dist/httpd/CHANGES_2.4
reference_id
reference_type
scores
url	http://www.apache.org/dist/httpd/CHANGES_2.4

reference_url	http://www.openwall.com/lists/oss-security/2016/07/05/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2016/07/05/5

reference_url	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html

reference_url	http://www.securityfocus.com/bid/91566
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/91566

reference_url	http://www.securitytracker.com/id/1036225
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1036225

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1352476
reference_id	1352476
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1352476

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.18:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.19:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.20:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.20:::::::*

reference_url

https://httpd.apache.org/security/json/CVE-2016-4979.json

reference_id

CVE-2016-4979

reference_type

scores

value	important
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2016-4979.json

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-4979

reference_id

CVE-2016-4979

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:P/A:N

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-4979

reference_url	https://security.gentoo.org/glsa/201610-02
reference_id	GLSA-201610-02
reference_type
scores
url	https://security.gentoo.org/glsa/201610-02

reference_url	https://access.redhat.com/errata/RHSA-2016:1420
reference_id	RHSA-2016:1420
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1420

fixed_packages

url	pkg:ebuild/www-servers/apache@2.4.23
purl	pkg:ebuild/www-servers/apache@2.4.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.23

aliases CVE-2016-4979

risk_score 4.1

exploitability 0.5

weighted_severity 8.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7zer-dq7c-8ffq

url VCID-fnxp-n271-mfd8

vulnerability_id VCID-fnxp-n271-mfd8

summary A NULL pointer deference was found in mod_cache. A malicious HTTP server could cause a crash in a caching forward proxy configuration. This crash would only be a denial of service if using a threaded MPM.

references

reference_url	http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html

reference_url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00004.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00004.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-0325.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-0325.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3581.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3581.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3581

reference_id

reference_type

scores

value	0.04809
scoring_system	epss
scoring_elements	0.89497
published_at	2026-04-13T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89459
published_at	2026-04-01T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89504
published_at	2026-04-11T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89501
published_at	2026-04-12T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89463
published_at	2026-04-02T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89474
published_at	2026-04-04T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89475
published_at	2026-04-07T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89491
published_at	2026-04-08T12:55:00Z

value	0.04809
scoring_system	epss
scoring_elements	0.89495
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3581

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3581
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3581

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/97027
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/97027

reference_url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r83109088737656fa6307bd99ab40f8ff0269ae58d3f7272d7048494a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r83109088737656fa6307bd99ab40f8ff0269ae58d3f7272d7048494a%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/ra7f6aeb28661fbf826969526585f16856abc4615877875f9d3b35ef4%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/ra7f6aeb28661fbf826969526585f16856abc4615877875f9d3b35ef4%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rd336919f655b7ff309385e34a143e41c503e133da80414485b3abcc9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rd336919f655b7ff309385e34a143e41c503e133da80414485b3abcc9%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E

reference_url	https://support.apple.com/HT205219
reference_id
reference_type
scores
url	https://support.apple.com/HT205219

reference_url	https://support.apple.com/kb/HT205031
reference_id
reference_type
scores
url	https://support.apple.com/kb/HT205031

reference_url	http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup&pathrev=1627749
reference_id
reference_type
scores
url	http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?view=markup&pathrev=1627749

reference_url	http://svn.apache.org/viewvc?view=revision&revision=1624234
reference_id
reference_type
scores
url	http://svn.apache.org/viewvc?view=revision&revision=1624234

reference_url	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.securityfocus.com/bid/71656
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/71656

reference_url	http://www.securitytracker.com/id/1031005
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1031005

reference_url	http://www.ubuntu.com/usn/USN-2523-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2523-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1149709
reference_id	1149709
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1149709

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.1:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.10:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.2:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.3:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.4:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.6:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.7:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.9:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center::::::::
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.1:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.0:::::::*
reference_id	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:6:-::::::
reference_id	cpe:2.3:o:oracle:linux:6:-::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:6:-::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.3:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_eus:7.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.4:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_eus:7.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_eus:7.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_eus:7.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*

reference_url

https://httpd.apache.org/security/json/CVE-2014-3581.json

reference_id

CVE-2014-3581

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2014-3581.json

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-3581

reference_id

CVE-2014-3581

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2014-3581

reference_url	https://security.gentoo.org/glsa/201610-02
reference_id	GLSA-201610-02
reference_type
scores
url	https://security.gentoo.org/glsa/201610-02

reference_url	https://access.redhat.com/errata/RHSA-2014:1972
reference_id	RHSA-2014:1972
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1972

reference_url	https://access.redhat.com/errata/RHSA-2015:0325
reference_id	RHSA-2015:0325
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0325

reference_url	https://access.redhat.com/errata/RHSA-2015:2661
reference_id	RHSA-2015:2661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2661

reference_url	https://usn.ubuntu.com/2523-1/
reference_id	USN-2523-1
reference_type
scores
url	https://usn.ubuntu.com/2523-1/

fixed_packages

url	pkg:ebuild/www-servers/apache@2.4.23
purl	pkg:ebuild/www-servers/apache@2.4.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.23

aliases CVE-2014-3581

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fnxp-n271-mfd8

url VCID-k4kb-21tp-4kc8

vulnerability_id VCID-k4kb-21tp-4kc8

summary An HTTP request smuggling attack was possible due to a bug in parsing of chunked requests. A malicious client could force the server to misinterpret the request length, allowing cache poisoning or credential hijacking if an intermediary proxy is in use.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3183.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3183.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3183

reference_id

reference_type

scores

value	0.28343
scoring_system	epss
scoring_elements	0.96477
published_at	2026-04-01T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96485
published_at	2026-04-02T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96489
published_at	2026-04-04T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96494
published_at	2026-04-07T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96502
published_at	2026-04-08T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96505
published_at	2026-04-09T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96508
published_at	2026-04-12T12:55:00Z

value	0.28343
scoring_system	epss
scoring_elements	0.96511
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1243887
reference_id	1243887
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1243887

reference_url

https://httpd.apache.org/security/json/CVE-2015-3183.json

reference_id

CVE-2015-3183

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2015-3183.json

reference_url	https://security.gentoo.org/glsa/201610-02
reference_id	GLSA-201610-02
reference_type
scores
url	https://security.gentoo.org/glsa/201610-02

reference_url	https://access.redhat.com/errata/RHSA-2015:1666
reference_id	RHSA-2015:1666
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1666

reference_url	https://access.redhat.com/errata/RHSA-2015:1667
reference_id	RHSA-2015:1667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1667

reference_url	https://access.redhat.com/errata/RHSA-2015:1668
reference_id	RHSA-2015:1668
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1668

reference_url	https://access.redhat.com/errata/RHSA-2015:2661
reference_id	RHSA-2015:2661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2661

reference_url	https://access.redhat.com/errata/RHSA-2016:0061
reference_id	RHSA-2016:0061
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0061

reference_url	https://access.redhat.com/errata/RHSA-2016:0062
reference_id	RHSA-2016:0062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0062

reference_url	https://access.redhat.com/errata/RHSA-2016:2054
reference_id	RHSA-2016:2054
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2054

reference_url	https://access.redhat.com/errata/RHSA-2016:2055
reference_id	RHSA-2016:2055
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2055

reference_url	https://access.redhat.com/errata/RHSA-2016:2056
reference_id	RHSA-2016:2056
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2056

reference_url	https://usn.ubuntu.com/2686-1/
reference_id	USN-2686-1
reference_type
scores
url	https://usn.ubuntu.com/2686-1/

fixed_packages

url	pkg:ebuild/www-servers/apache@2.4.23
purl	pkg:ebuild/www-servers/apache@2.4.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.23

aliases CVE-2015-3183

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k4kb-21tp-4kc8

url VCID-kv7f-t14h-2bfv

vulnerability_id VCID-kv7f-t14h-2bfv

summary By manipulating the flow control windows on streams, a client was able to block server threads for long times, causing starvation of worker threads. Connections could still be opened, but no streams where processed for these. This issue affected HTTP/2 support in 2.4.17 and 2.4.18.

references

reference_url	http://httpd.apache.org/security/vulnerabilities_24.html
reference_id
reference_type
scores
url	http://httpd.apache.org/security/vulnerabilities_24.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1546.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1546.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-1546

reference_id

reference_type

scores

value	0.41505
scoring_system	epss
scoring_elements	0.97407
published_at	2026-04-13T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97382
published_at	2026-04-01T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97403
published_at	2026-04-09T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97405
published_at	2026-04-11T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97406
published_at	2026-04-12T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97389
published_at	2026-04-02T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97394
published_at	2026-04-04T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97395
published_at	2026-04-07T12:55:00Z

value	0.41505
scoring_system	epss
scoring_elements	0.97402
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-1546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1546

reference_url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r04e89e873d54116a0635ef2f7061c15acc5ed27ef7500997beb65d6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r04e89e873d54116a0635ef2f7061c15acc5ed27ef7500997beb65d6f%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb14daf9cc4e28d18cdc15d6a6ca74e565672fabf7ad89541071d008b%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/re1e3a24664d35bcd0a0e793e0b5fc6ca6c107f99a1b2c545c5d4b467%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/re1e3a24664d35bcd0a0e793e0b5fc6ca6c107f99a1b2c545c5d4b467%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E

reference_url	https://security.netapp.com/advisory/ntap-20180601-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20180601-0001/

reference_url	http://svn.apache.org/viewvc?view=revision&revision=1733727
reference_id
reference_type
scores
url	http://svn.apache.org/viewvc?view=revision&revision=1733727

reference_url	http://www.apache.org/dist/httpd/CHANGES_2.4
reference_id
reference_type
scores
url	http://www.apache.org/dist/httpd/CHANGES_2.4

reference_url	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html

reference_url	http://www.securityfocus.com/bid/92331
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/92331

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1336350
reference_id	1336350
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1336350

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.17:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.18:::::::*
reference_id	cpe:2.3:a:apache:http_server:2.4.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:2.4.18:::::::*

reference_url

https://httpd.apache.org/security/json/CVE-2016-1546.json

reference_id

CVE-2016-1546

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2016-1546.json

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-1546

reference_id

CVE-2016-1546

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-1546

reference_url	https://security.gentoo.org/glsa/201610-02
reference_id	GLSA-201610-02
reference_type
scores
url	https://security.gentoo.org/glsa/201610-02

reference_url	https://access.redhat.com/errata/RHSA-2017:1161
reference_id	RHSA-2017:1161
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1161

fixed_packages

url	pkg:ebuild/www-servers/apache@2.4.23
purl	pkg:ebuild/www-servers/apache@2.4.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.23

aliases CVE-2016-1546

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kv7f-t14h-2bfv

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/apache@2.4.23

Package Instance