Search for vulnerabilities
| Vulnerability ID | VCID-ddvz-xmkg-fkda |
| Aliases |
CVE-2013-5704
|
| Summary | HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. This fix adds the "MergeTrailers" directive to restore legacy behavior. |
| Status | Published |
| Exploitability | 2.0 |
| Weighted Severity | 2.1 |
| Risk | 4.2 |
| Affected and Fixed Packages | Package Details |
| CWE-287 | Improper Authentication |
| System | Score | Found at |
|---|---|---|
| epss | 0.63258 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.63258 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| epss | 0.8313 | https://api.first.org/data/v1/epss?cve=CVE-2013-5704 |
| apache_httpd | low | https://httpd.apache.org/security/json/CVE-2013-5704.json |
| Reference id | Reference type | URL |
|---|---|---|
| https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json | ||
| https://api.first.org/data/v1/epss?cve=CVE-2013-5704 | ||
| https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704 | ||
| 1082903 | https://bugzilla.redhat.com/show_bug.cgi?id=1082903 | |
| CVE-2013-5704 | https://httpd.apache.org/security/json/CVE-2013-5704.json | |
| RHSA-2014:1972 | https://access.redhat.com/errata/RHSA-2014:1972 | |
| RHSA-2015:0325 | https://access.redhat.com/errata/RHSA-2015:0325 | |
| RHSA-2015:1249 | https://access.redhat.com/errata/RHSA-2015:1249 | |
| RHSA-2015:2661 | https://access.redhat.com/errata/RHSA-2015:2661 | |
| RHSA-2016:0061 | https://access.redhat.com/errata/RHSA-2016:0061 | |
| RHSA-2016:0062 | https://access.redhat.com/errata/RHSA-2016:0062 | |
| USN-2523-1 | https://usn.ubuntu.com/2523-1/ |
| Percentile | 0.98328 |
| EPSS Score | 0.63258 |
| Published At | Aug. 2, 2025, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2025-07-31T08:28:58.310261+00:00 | Apache HTTPD Importer | Import | https://httpd.apache.org/security/json/CVE-2013-5704.json | 37.0.0 |