This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Oracle First view 1997-07-23
Product Http Server Last view 2023-10-17
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:* 57
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:* 53
cpe:2.3:a:oracle:http_server:11.1.1.9.0:*:*:*:*:*:*:* 10
cpe:2.3:a:oracle:http_server:11.1.1.7.0:*:*:*:*:*:*:* 8
cpe:2.3:a:oracle:http_server:12.1.3.0:*:*:*:*:*:*:* 8
cpe:2.3:a:oracle:http_server:12.1.2.0:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:9.2.0.7:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:12.1.3.0.0:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:9.2.0:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:9.0.1:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:10.1.3.5.0:*:*:*:*:*:*:* 6
cpe:2.3:a:oracle:http_server:12.2.1.2.0:*:*:*:*:*:*:* 4
cpe:2.3:a:oracle:http_server:8.1.7:*:*:*:*:*:*:* 3
cpe:2.3:a:oracle:http_server:-:*:*:*:*:*:*:* 3
cpe:2.3:a:oracle:http_server:9.0.1.5:*:*:*:*:*:*:* 3
cpe:2.3:a:oracle:http_server:12.2.1.1.0:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:2.1:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:1.0.2.2_roll_up_2:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:1.0.2.1:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:1.0.2.2:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:1.0.2.0:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:1.0.2.1s_for_apps:*:*:*:*:*:*:* 2
cpe:2.3:a:oracle:http_server:9.1:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:1.0:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:12.2.1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:12.1.3:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:11.1.1.9:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:9.0.3.1:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:11.5.10.2:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:9.2.0.8:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:9.0.2:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:9.0.2.3:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:11.1.1.6.0:*:*:*:*:*:*:* 1
cpe:2.3:a:oracle:http_server:10.1.0.5:*:*:*:*:*:*:* 1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.5 2023-10-17 CVE-2023-22019

Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
7.1 2022-10-18 CVE-2022-21593

Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: OHS Config MBeans). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data as well as unauthorized update, insert or delete access to some of Oracle HTTP Server accessible data. CVSS 3.1 Base Score 7.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N).
9.8 2022-07-11 CVE-2020-35169

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Improper Input Validation Vulnerability.
9.8 2022-07-11 CVE-2020-35168

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
9.8 2022-07-11 CVE-2020-35167

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
9.8 2022-07-11 CVE-2020-35166

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
8.1 2022-07-11 CVE-2020-35164

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
9.8 2022-07-11 CVE-2020-35163

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain a Use of Insufficiently Random Values Vulnerability.
9.8 2022-07-11 CVE-2020-29508

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Improper Input Validation Vulnerability.
9.8 2022-07-11 CVE-2020-29507

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.4, and Dell BSAFE Micro Edition Suite, versions before 4.4, contain an Improper Input Validation Vulnerability.
9.8 2022-07-11 CVE-2020-29506

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability.
7.5 2022-06-01 CVE-2020-26185

Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability.
7.5 2022-06-01 CVE-2020-26184

Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain an Improper Certificate Validation vulnerability.
9.8 2022-03-14 CVE-2022-23943

Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2.4.52 and prior versions.
9.1 2022-03-14 CVE-2022-22721

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.
9.8 2022-03-14 CVE-2022-22720

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
7.5 2022-03-14 CVE-2022-22719

A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.
7.5 2022-03-03 CVE-2022-21716

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach is a simple as `nc -rv localhost 22 < /dev/zero`. A patch is available in version 22.2.0. There are currently no known workarounds.
9.8 2022-02-18 CVE-2022-25315

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.
7.5 2022-02-18 CVE-2022-25314

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.
6.5 2022-02-18 CVE-2022-25313

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.
9.8 2022-02-16 CVE-2022-25236

xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.
9.8 2022-02-16 CVE-2022-25235

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.
7.5 2022-02-09 CVE-2022-0391

A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n' in the URL path. This flaw allows an attacker to input a crafted URL, leading to injection attacks. This flaw affects Python versions prior to 3.10.0b1, 3.9.5, 3.8.11, 3.7.11 and 3.6.14.
7.8 2022-01-28 CVE-2021-4034

A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it'll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.

CWE : Common Weakness Enumeration

%idName
19% (10) CWE-125 Out-of-bounds Read
13% (7) CWE-787 Out-of-bounds Write
9% (5) CWE-476 NULL Pointer Dereference
7% (4) CWE-190 Integer Overflow or Wraparound
5% (3) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
5% (3) CWE-20 Improper Input Validation
3% (2) CWE-674 Uncontrolled Recursion
3% (2) CWE-444 Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggli...
3% (2) CWE-362 Race Condition
3% (2) CWE-74 Failure to Sanitize Data into a Different Plane ('Injection')
1% (1) CWE-770 Allocation of Resources Without Limits or Throttling
1% (1) CWE-668 Exposure of Resource to Wrong Sphere
1% (1) CWE-665 Improper Initialization
1% (1) CWE-611 Information Leak Through XML External Entity File Disclosure
1% (1) CWE-416 Use After Free
1% (1) CWE-330 Use of Insufficiently Random Values
1% (1) CWE-327 Use of a Broken or Risky Cryptographic Algorithm
1% (1) CWE-326 Inadequate Encryption Strength
1% (1) CWE-295 Certificate Issues
1% (1) CWE-200 Information Exposure
1% (1) CWE-116 Improper Encoding or Escaping of Output

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-35 Leverage Executable Code in Nonexecutable Files

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:9539 Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Ap...
oval:org.mitre.oval:def:12473 HP-UX Apache-based Web Server, Local Information Disclosure, Increase of Priv...
oval:org.mitre.oval:def:10270 The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache AP...
oval:org.mitre.oval:def:20023 DSA-2506-1 libapache-mod-security - modsecurity bypass
oval:org.mitre.oval:def:19915 RC4 algorithm vulnerability
oval:org.mitre.oval:def:21067 RHSA-2013:0815: httpd security update (Moderate)
oval:org.mitre.oval:def:19534 HP-UX Apache Web Server, Remote Execution of Arbitrary Code, Denial of Servi...
oval:org.mitre.oval:def:18790 Apache HTTP vulnerability from 2.2.x before 2.2.25 in VisualSVN Server (CVE-2...
oval:org.mitre.oval:def:24116 ELSA-2013:0815: httpd security update (Moderate)
oval:org.mitre.oval:def:23465 DEPRECATED: ELSA-2013:0815: httpd security update (Moderate)
oval:org.mitre.oval:def:25551 SUSE-SU-2013:1381-1 -- Security update for Apache2
oval:org.mitre.oval:def:25300 SUSE-SU-2013:1824-1 -- Security update for Apache2
oval:org.mitre.oval:def:24283 Apache HTTP vulnerability before 2.2.27 or before 2.4.8 in VisualSVN Server (...
oval:org.mitre.oval:def:26803 DEPRECATED: ELSA-2014-0369 -- httpd security update (Moderate)
oval:org.mitre.oval:def:27231 HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...
oval:org.mitre.oval:def:23810 USN-2152-1 -- apache2 vulnerabilities
oval:org.mitre.oval:def:24542 ELSA-2014:0370: httpd security update (Moderate)
oval:org.mitre.oval:def:24499 RHSA-2014:0369: httpd security update (Moderate)
oval:org.mitre.oval:def:24331 ELSA-2014:0369: httpd security update (Moderate)
oval:org.mitre.oval:def:24101 Apache HTTP vulnerability before 2.2.27 or before 2.4.8 in VisualSVN Server (...
oval:org.mitre.oval:def:24067 RHSA-2014:0370: httpd security update (Moderate)
oval:org.mitre.oval:def:26845 SUSE-SU-2014:1081-1 -- Security update for apache2
oval:org.mitre.oval:def:26498 SUSE-SU-2014:1080-1 -- Security update for apache2
oval:org.mitre.oval:def:26666 DEPRECATED: ELSA-2014-0370 -- httpd security update (Moderate)
oval:org.mitre.oval:def:26889 HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...

SAINT Exploits

Description Link
Polkit pkexec privilege elevation More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
55057 Apache APR-util xml/apr_xml.c apr_xml_* Interface Expat XML Parser Crafted XM...
39134 Apache mod_imagemap Module Imagemap Unspecified XSS
39133 Apache mod_imap Module Imagemap File Unspecified XSS
34297 Oracle HTTP Server isqlplus Request Multiple Parameter XSS
32905 Oracle Multiple Products Process Mgmt & Notification Oracle Notification ...
32904 Oracle Multiple Products Process Mgmt & Notification ONS OPMN Daemon Remo...
32887 Oracle HTTP Server Unspecified Information Disclosure
32886 Oracle HTTP Server SSL Module Unspecified Remote DoS (OHS06)
32885 Oracle HTTP Server SSL Module Unspecified Remote DoS (OHS05)
32884 Oracle HTTP Server Unspecified Issue (OHS04)
32883 Oracle HTTP Server Unspecified Issue (OHS03)
32882 Oracle HTTP Server SSL Module Unspecified Remote Issue (OHS02)
32881 Oracle HTTP Server SSL Module Unspecified Remote Issue (OHS01)
31398 Oracle Multiple Products HTTP Server SSL Unspecified Remote Information Discl...
31397 Oracle HTTP Server SSL Unspecified Remote DoS
31396 Oracle Multiple Products HTTP Server Unspecified Remote Unauthenticated Issue
31395 Oracle Multiple Products HTTP Server SSL Unspecified Information Disclosure
31394 Oracle Multiple Products HTTP Server SSL Unspecified Integrity Issue
31393 Oracle Multiple Products HTTP Server htdigest Unspecified Remote Issue
22719 Oracle Multiple Products PL/SQL Gateway PLSQLExclusion List Bypass
9414 Oracle Webserver Configuration File Ownership Weakness
9413 Oracle Webserver PL/SQL Stored Procedure GET Request DoS
4760 Oracle Application Server Single Sign-on (SSO) p_submit_url XSS
3943 OpenSSL ASN.1 Parser Invalid Encoding DoS
3941 OpenSSL SSLv3 Session ID Buffer Overflow

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2012-12-26 Name : Mandriva Update for apache-mod_security MDVSA-2012:182 (apache-mod_security)
File : nvt/gb_mandriva_MDVSA_2012_182.nasl
2012-08-10 Name : Debian Security Advisory DSA 2506-1 (libapache-mod-security)
File : nvt/deb_2506_1.nasl
2011-12-07 Name : Oracle Database Server and Application Server Multiple Unspecified Vulnerabil...
File : nvt/gb_oracle_database_n_appln_server_pl_sql_cmd_exec_vuln.nasl
2011-08-09 Name : CentOS Update for httpd CESA-2009:1108 centos3 i386
File : nvt/gb_CESA-2009_1108_httpd_centos3_i386.nasl
2011-08-09 Name : CentOS Update for apr-util CESA-2009:1107 centos5 i386
File : nvt/gb_CESA-2009_1107_apr-util_centos5_i386.nasl
2011-01-04 Name : HP-UX Update for Apache-based Web Server HPSBUX02612
File : nvt/gb_hp_ux_HPSBUX02612.nasl
2010-05-12 Name : Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003
File : nvt/macosx_upd_10_5_3_secupd_2008-003.nasl
2010-05-12 Name : Mac OS X 10.6.2 Update / Mac OS X Security Update 2009-006
File : nvt/macosx_upd_10_6_2_secupd_2009-006.nasl
2010-02-03 Name : Solaris Update for Apache 1.3 122912-19
File : nvt/gb_solaris_122912_19.nasl
2010-02-03 Name : Solaris Update for Apache 1.3 122911-19
File : nvt/gb_solaris_122911_19.nasl
2009-12-10 Name : Mandriva Security Advisory MDVSA-2009:314 (apr)
File : nvt/mdksa_2009_314.nasl
2009-11-17 Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13 Name : Solaris Update for Apache 1.3 122912-17
File : nvt/gb_solaris_122912_17.nasl
2009-10-13 Name : SLES10: Security update for libapr-util1
File : nvt/sles10_libapr-util1.nasl
2009-10-13 Name : Solaris Update for Apache 1.3 122911-17
File : nvt/gb_solaris_122911_17.nasl
2009-10-11 Name : SLES11: Security update for libapr-util1
File : nvt/sles11_libapr-util1.nasl
2009-10-10 Name : SLES9: Security update for Apache
File : nvt/sles9p5023075.nasl
2009-10-10 Name : SLES9: Security update for Apache 2
File : nvt/sles9p5023052.nasl
2009-09-23 Name : Solaris Update for Apache 1.3 122912-16
File : nvt/gb_solaris_122912_16.nasl
2009-09-23 Name : Solaris Update for Apache 1.3 122911-16
File : nvt/gb_solaris_122911_16.nasl
2009-09-02 Name : FreeBSD Ports: apache
File : nvt/freebsd_apache15.nasl
2009-08-17 Name : SuSE Security Summary SUSE-SR:2009:013
File : nvt/suse_sr_2009_013.nasl
2009-07-06 Name : Gentoo Security Advisory GLSA 200907-03 (apr-util)
File : nvt/glsa_200907_03.nasl
2009-06-30 Name : Fedora Core 11 FEDORA-2009-6261 (apr-util)
File : nvt/fcore_2009_6261.nasl
2009-06-30 Name : Fedora Core 9 FEDORA-2009-6014 (apr-util)
File : nvt/fcore_2009_6014.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0158 Multiple Vulnerabilities in Oracle Java SE
Severity: Category I - VMSKEY: V0061089
2015-A-0149 Multiple Vulnerabilities in Juniper Networks and Security Manager(NSM) Appliance
Severity: Category I - VMSKEY: V0061101
2014-A-0172 Multiple Vulnerabilities in Red Hat JBoss Enterprise Application Platform
Severity: Category I - VMSKEY: V0057381
2014-A-0114 Multiple Vulnerabilities in Apache HTTP Server
Severity: Category I - VMSKEY: V0053307
2014-A-0084 Multiple Vulnerabilities in Apache HTTP Server
Severity: Category I - VMSKEY: V0052631
2014-B-0065 Multiple Vulnerabilities in IBM WebSphere Application Server
Severity: Category I - VMSKEY: V0051617
2014-A-0030 Apple Mac OS X Security Update 2014-001
Severity: Category I - VMSKEY: V0044547
2014-A-0009 Multiple Vulnerabilities in Oracle Fusion Middleware
Severity: Category I - VMSKEY: V0043395
2013-A-0220 Multiple Vulnerabilities in Mozilla Products
Severity: Category I - VMSKEY: V0042380
2013-A-0177 Multiple Vulnerabilities in Red Hat JBoss Enterprise Application Platform
Severity: Category I - VMSKEY: V0040288
2013-A-0146 Multiple Security Vulnerabilities in Apache HTTP Server
Severity: Category I - VMSKEY: V0039573

Snort® IPS/IDS

Date Description
2020-01-21 Apache httpd mod_remoteip heap buffer overflow attempt
RuleID : 52494 - Type : SERVER-APACHE - Revision : 1
2019-10-17 Apache cookie logging denial of service attempt
RuleID : 51547 - Type : SERVER-APACHE - Revision : 1
2017-04-12 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 41907 - Type : POLICY-OTHER - Revision : 3
2017-04-06 SSLv3 Client Hello attempt
RuleID : 41807 - Type : POLICY-OTHER - Revision : 3
2016-04-05 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37916 - Type : POLICY-OTHER - Revision : 3
2016-04-05 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37915 - Type : POLICY-OTHER - Revision : 3
2016-04-05 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37914 - Type : POLICY-OTHER - Revision : 3
2016-04-05 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37913 - Type : POLICY-OTHER - Revision : 3
2016-04-05 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37912 - Type : POLICY-OTHER - Revision : 3
2016-03-14 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37026 - Type : POLICY-OTHER - Revision : 4
2016-03-14 SSL/TLS weak RC4 cipher suite use attempt
RuleID : 37025 - Type : POLICY-OTHER - Revision : 4
2015-09-01 Apache HTTP Server mod_status heap buffer overflow attempt
RuleID : 35406 - Type : SERVER-APACHE - Revision : 4
2014-01-10 Apache WebDAV mod_dav nested entity reference DoS attempt
RuleID : 23779 - Type : SERVER-APACHE - Revision : 4
2014-01-10 Apache mod_imagemap cross site scripting attempt
RuleID : 13302 - Type : SERVER-APACHE - Revision : 12
2014-01-10 Oracle iSQL Plus cross site scripting attempt
RuleID : 12060 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 Oracle iSQL Plus cross site scripting attempt
RuleID : 12059 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 Oracle iSQL Plus cross site scripting attempt
RuleID : 11685 - Type : SERVER-WEBAPP - Revision : 9
2014-01-10 Oracle iSQL Plus cross site scripting attempt
RuleID : 11194 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10 Oracle iSQL Plus cross site scripting attempt
RuleID : 11193 - Type : SERVER-WEBAPP - Revision : 10
2014-01-10 SSLv2 OpenSSl KEY_ARG buffer overflow attempt
RuleID : 10997 - Type : SERVER-WEBAPP - Revision : 9

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-12-04 Name: The remote host is missing a vendor-supplied security patch.
File: check_point_gaia_sk106499.nasl - Type: ACT_GATHER_INFO
2017-01-05 Name: The remote device is missing a vendor-supplied security patch.
File: juniper_jsa10759.nasl - Type: ACT_GATHER_INFO
2016-09-09 Name: The remote device is affected by multiple denial of service vulnerabilities.
File: bluecoat_proxy_av_3_5_4_1.nasl - Type: ACT_GATHER_INFO
2016-09-08 Name: The remote host is affected by multiple vulnerabilities.
File: screenos_JSA10733.nasl - Type: ACT_GATHER_INFO
2016-07-25 Name: The remote web server is affected by multiple vulnerabilities.
File: oracle_http_server_cpu_jul_2016.nasl - Type: ACT_GATHER_INFO
2016-07-14 Name: A video conferencing application running on the remote host is affected by mu...
File: cisco_telepresence_vcs_multiple_880.nasl - Type: ACT_GATHER_INFO
2016-06-23 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10698.nasl - Type: ACT_GATHER_INFO
2016-06-23 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10727.nasl - Type: ACT_GATHER_INFO
2016-06-22 Name: The remote OracleVM host is missing a security update.
File: oraclevm_OVMSA-2016-0071.nasl - Type: ACT_GATHER_INFO
2016-06-16 Name: The remote host is affected by a security feature bypass vulnerability.
File: ibm_storwize_cve_2015_2808.nasl - Type: ACT_GATHER_INFO
2016-05-31 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL16863.nasl - Type: ACT_GATHER_INFO
2016-05-20 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-604.nasl - Type: ACT_GATHER_INFO
2016-05-18 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL12824341.nasl - Type: ACT_GATHER_INFO
2016-05-18 Name: The remote web server is affected by multiple vulnerabilities.
File: hpsmh_7_5_5.nasl - Type: ACT_GATHER_INFO
2016-05-16 Name: The remote OracleVM host is missing a security update.
File: oraclevm_OVMSA-2016-0049.nasl - Type: ACT_GATHER_INFO
2016-05-02 Name: The remote host is missing one or more security updates.
File: mysql_5_6_29_rpm.nasl - Type: ACT_GATHER_INFO
2016-05-02 Name: The remote host is missing one or more security updates.
File: mysql_5_7_11_rpm.nasl - Type: ACT_GATHER_INFO
2016-04-29 Name: The remote host is affected by multiple vulnerabilities.
File: hp_data_protector_hpsbgn03580.nasl - Type: ACT_GATHER_INFO
2016-04-22 Name: An application installed on the remote host is affected by multiple vulnerabi...
File: virtualbox_5_0_18.nasl - Type: ACT_GATHER_INFO
2016-03-22 Name: The remote Mac OS X host is affected by multiple vulnerabilities.
File: macosx_10_11_4.nasl - Type: ACT_GATHER_INFO
2016-03-08 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-0678-1.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-605de37b7f.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-d87d60b9a9.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-294.nasl - Type: ACT_GATHER_INFO
2016-02-29 Name: The remote AIX host is missing a vendor-supplied security patch.
File: aix_U867669.nasl - Type: ACT_GATHER_INFO