This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apache:http_server:2.2.27
Detail
VendorApacheFirst view 2009-07-05
ProductHttp ServerLast view2019-04-08
Version2.2.27TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:apache:http_server

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
62019-04-08CVE-2019-0217NetworkMediumRequires ...
52019-01-30CVE-2018-17189NetworkLowNone Requ...
4.32018-08-14CVE-2016-4975NetworkMediumNone Requ...
6.82018-03-26CVE-2018-1312NetworkMediumNone Requ...
52018-03-26CVE-2018-1303NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-03-26CVE-2018-1302NetworkMediumNone Requ...
4.32018-03-26CVE-2018-1301NetworkMediumNone Requ...
3.32018-03-09CVE-2016-8612Adjacent ...LowNone Requ...
52017-09-18CVE-2017-9798NetworkLowNone Requ...
6.42017-07-13CVE-2017-9788NetworkLowNone Requ...
7.52017-06-19CVE-2017-7679NetworkLowNone Requ...
7.52017-06-19CVE-2017-7668NetworkLowNone Requ...
7.52017-06-19CVE-2017-3169NetworkLowNone Requ...
7.52017-06-19CVE-2017-3167NetworkLowNone Requ...
5.12016-07-18CVE-2016-5387NetworkHighNone Requ...
52015-07-20CVE-2015-3183NetworkLowNone Requ...
52015-03-07CVE-2015-0228NetworkLowNone Requ...
52014-07-20CVE-2014-0231NetworkLowNone Requ...
6.82014-07-20CVE-2014-0226NetworkMediumNone Requ...
4.32014-07-20CVE-2014-0118NetworkMediumNone Requ...
52014-03-18CVE-2014-0098NetworkLowNone Requ...
52014-03-18CVE-2013-6438NetworkLowNone Requ...
7.52013-07-23CVE-2013-2249NetworkLowNone Requ...
6.92012-04-18CVE-2012-0883LocalMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
26% (7)CWE-20Improper Input Validation
7% (2)CWE-476NULL Pointer Dereference
7% (2)CWE-399Resource Management Errors
7% (2)CWE-362Race Condition
7% (2)CWE-287Improper Authentication
Hide | Show 10 More...
%idName
7% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
3% (1)CWE-416Use After Free
3% (1)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
3% (1)CWE-284Access Control (Authorization) Issues
3% (1)CWE-264Permissions, Privileges, and Access Controls
3% (1)CWE-200Information Exposure
3% (1)CWE-189Numeric Errors
3% (1)CWE-125Out-of-bounds Read
3% (1)CWE-93Failure to Sanitize CRLF Sequences ('CRLF Injection')
3% (1)CWE-17Code

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:25379RHSA-2014:0920: httpd security update (Important)
oval:org.mitre.oval:def:25253RHSA-2014:0921: httpd security update (Important)
oval:org.mitre.oval:def:26259DSA-2989-1 -- apache2 - security update
oval:org.mitre.oval:def:25884USN-2299-1 -- apache2 vulnerabilities
oval:org.mitre.oval:def:26461SUSE-SU-2014:0967-1 -- Security update for the Apache Web Server
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:27060ELSA-2014-0920 -- httpd security update (important)
oval:org.mitre.oval:def:28909HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...
oval:org.mitre.oval:def:18898HP-UX Apache Web Server running PHP, Remote Execution of Arbitrary Code, Pri...
oval:org.mitre.oval:def:23810USN-2152-1 -- apache2 vulnerabilities
oval:org.mitre.oval:def:24542ELSA-2014:0370: httpd security update (Moderate)
oval:org.mitre.oval:def:24499RHSA-2014:0369: httpd security update (Moderate)
oval:org.mitre.oval:def:24331ELSA-2014:0369: httpd security update (Moderate)
oval:org.mitre.oval:def:24101Apache HTTP vulnerability before 2.2.27 or before 2.4.8 in VisualSVN Server (...
oval:org.mitre.oval:def:24067RHSA-2014:0370: httpd security update (Moderate)
oval:org.mitre.oval:def:26845SUSE-SU-2014:1081-1 -- Security update for apache2
oval:org.mitre.oval:def:26498SUSE-SU-2014:1080-1 -- Security update for apache2
oval:org.mitre.oval:def:26666DEPRECATED: ELSA-2014-0370 -- httpd security update (Moderate)
oval:org.mitre.oval:def:26889HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...
oval:org.mitre.oval:def:24283Apache HTTP vulnerability before 2.2.27 or before 2.4.8 in VisualSVN Server (...
oval:org.mitre.oval:def:26803DEPRECATED: ELSA-2014-0369 -- httpd security update (Moderate)
oval:org.mitre.oval:def:27231HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...
oval:org.mitre.oval:def:28696SUSE-SU-2015:0974-1 -- Security update for apache2 (moderate)
oval:org.mitre.oval:def:9403The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in...
oval:org.mitre.oval:def:8616Apache 'mod_proxy' Remote Denial Of Service Vulnerability
oval:org.mitre.oval:def:13643USN-802-2 -- apache2 regression

Open Source Vulnerability Database (OSVDB)

idDescription
55553Apache HTTP Server mod_proxy Module mod_proxy_http.c stream_reqbody_cl Functi...

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-10-03Name : Mandriva Update for apache MDVSA-2012:154-1 (apache)
File : nvt/gb_mandriva_MDVSA_2012_154_1.nasl
2012-08-10Name : FreeBSD Ports: apache
File : nvt/freebsd_apache21.nasl
2012-08-10Name : Gentoo Security Advisory GLSA 201206-25 (apache)
File : nvt/glsa_201206_25.nasl
2011-08-09Name : CentOS Update for httpd CESA-2009:1148 centos5 i386
File : nvt/gb_CESA-2009_1148_httpd_centos5_i386.nasl
2011-01-04Name : HP-UX Update for Apache-based Web Server HPSBUX02612
File : nvt/gb_hp_ux_HPSBUX02612.nasl
Hide | Show 20 More...
idDescription
2010-05-12Name : Mac OS X 10.6.2 Update / Mac OS X Security Update 2009-006
File : nvt/macosx_upd_10_6_2_secupd_2009-006.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:323 (apache)
File : nvt/mdksa_2009_323.nasl
2009-10-27Name : SLES10: Security update for Apache 2
File : nvt/sles10_apache21.nasl
2009-10-27Name : SLES11: Security update for Apache 2
File : nvt/sles11_apache2.nasl
2009-10-27Name : SuSE Security Advisory SUSE-SA:2009:050 (apache2,libapr1)
File : nvt/suse_sa_2009_050.nasl
2009-10-27Name : SLES9: Security update for Apache 2
File : nvt/sles9p5060942.nasl
2009-09-02Name : Fedora Core 11 FEDORA-2009-8812 (httpd)
File : nvt/fcore_2009_8812.nasl
2009-09-02Name : Ubuntu USN-802-2 (apache2)
File : nvt/ubuntu_802_2.nasl
2009-09-02Name : FreeBSD Ports: apache
File : nvt/freebsd_apache15.nasl
2009-08-17Name : Debian Security Advisory DSA 1834-2 (apache2)
File : nvt/deb_1834_2.nasl
2009-08-17Name : Mandrake Security Advisory MDVSA-2009:168 (apache)
File : nvt/mdksa_2009_168.nasl
2009-07-29Name : RedHat Security Advisory RHSA-2009:1148
File : nvt/RHSA_2009_1148.nasl
2009-07-29Name : RedHat Security Advisory RHSA-2009:1156
File : nvt/RHSA_2009_1156.nasl
2009-07-29Name : Debian Security Advisory DSA 1834-1 (apache2)
File : nvt/deb_1834_1.nasl
2009-07-29Name : Gentoo Security Advisory GLSA 200907-04 (apache)
File : nvt/glsa_200907_04.nasl
2009-07-29Name : Mandrake Security Advisory MDVSA-2009:149 (apache)
File : nvt/mdksa_2009_149.nasl
2009-07-29Name : Ubuntu USN-799-1 (dbus)
File : nvt/ubuntu_799_1.nasl
2009-07-29Name : Ubuntu USN-801-1 (tiff)
File : nvt/ubuntu_801_1.nasl
2009-07-29Name : Ubuntu USN-802-1 (apache2)
File : nvt/ubuntu_802_1.nasl
2009-07-29Name : CentOS Security Advisory CESA-2009:1148 (httpd)
File : nvt/ovcesa2009_1148.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2015-A-0174Multiple Vulnerabilities in Apache HTTP Server
Severity : Category I - VMSKEY : V0061135
2015-A-0149Multiple Vulnerabilities in Juniper Networks and Security Manager(NSM) Appliance
Severity : Category I - VMSKEY : V0061101
2014-A-0172Multiple Vulnerabilities in Red Hat JBoss Enterprise Application Platform
Severity : Category I - VMSKEY : V0057381
2014-A-0114Multiple Vulnerabilities in Apache HTTP Server
Severity : Category I - VMSKEY : V0053307
Hide | Show 3 More...
idDescription
2014-A-0084Multiple Vulnerabilities in Apache HTTP Server
Severity : Category I - VMSKEY : V0052631
2014-B-0065Multiple Vulnerabilities in IBM WebSphere Application Server
Severity : Category I - VMSKEY : V0051617
2013-A-0146Multiple Security Vulnerabilities in Apache HTTP Server
Severity : Category I - VMSKEY : V0039573

Snort® IPS/IDS

DateDescription
2018-06-05HTTP request smuggling attempt
RuleID : 46495 - Type : SERVER-OTHER - Revision : 4
2017-10-26Apache HTTP Server possible OPTIONS method memory leak attempt
RuleID : 44434 - Type : SERVER-APACHE - Revision : 5
2017-08-31Apache mod_auth_digest out of bounds read attempt
RuleID : 43790 - Type : SERVER-OTHER - Revision : 2
2017-08-17Multiple products HTTP connection header overflow attempt
RuleID : 43587 - Type : SERVER-WEBAPP - Revision : 4
2017-08-15httpd mod_mime content-type buffer overflow attempt
RuleID : 43547 - Type : SERVER-APACHE - Revision : 2
Hide | Show 4 More...
DateDescription
2016-07-28HttpOxy CGI application vulnerability potential man-in-the-middle attempt
RuleID : 39737-community - Type : SERVER-WEBAPP - Revision : 2
2016-08-31HttpOxy CGI application vulnerability potential man-in-the-middle attempt
RuleID : 39737 - Type : SERVER-WEBAPP - Revision : 2
2015-09-01Apache HTTP Server mod_status heap buffer overflow attempt
RuleID : 35406 - Type : SERVER-APACHE - Revision : 4
2014-01-10Apache mod_ssl non-SSL connection to SSL port denial of service attempt
RuleID : 11263 - Type : SERVER-APACHE - Revision : 8

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-eec13e2e8d.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-6744ca470d.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2478.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-2972.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0027.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0126.nasl - Type : ACT_GATHER_INFO
2018-07-24Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0037.nasl - Type : ACT_GATHER_INFO
2018-07-24Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0039.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2018-1212.nasl - Type : ACT_GATHER_INFO
2018-07-03Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1213.nasl - Type : ACT_GATHER_INFO
2018-05-31Name : The remote Debian host is missing a security update.
File : debian_DLA-1389.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1151.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote EulerOS host is missing multiple security updates.
File : EulerOS_SA-2018-1152.nasl - Type : ACT_GATHER_INFO
2018-05-24Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL75429050.nasl - Type : ACT_GATHER_INFO
2018-05-14Name : The remote Fedora host is missing a security update.
File : fedora_2018-e6d9251471.nasl - Type : ACT_GATHER_INFO
2018-05-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1004.nasl - Type : ACT_GATHER_INFO
2018-04-30Name : The remote Fedora host is missing a security update.
File : fedora_2018-63de5f3f6b.nasl - Type : ACT_GATHER_INFO
2018-04-06Name : The remote Fedora host is missing a security update.
File : fedora_2018-0a95bff197.nasl - Type : ACT_GATHER_INFO
2018-04-06Name : The remote Fedora host is missing a security update.
File : fedora_2018-375e3244b6.nasl - Type : ACT_GATHER_INFO
2018-04-04Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4164.nasl - Type : ACT_GATHER_INFO
2018-03-30Name : The remote web server is affected by multiple vulnerabilities.
File : apache_2_4_30.nasl - Type : ACT_GATHER_INFO
2018-03-27Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_f38187e72f6e11e88f07b499baebfeaf.nasl - Type : ACT_GATHER_INFO
2018-03-21Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa_10838.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-fdd3a98e8f.nasl - Type : ACT_GATHER_INFO
2017-12-26Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL34125394.nasl - Type : ACT_GATHER_INFO