Apache Http Server Уязвимости

Временная шкала

Последний год

Версия

2.4.276
2.4.175
2.4.771
2.4.370
2.4.870

Устранение последствий

Official Fix221
Temporary Fix0
Workaround8
Unavailable0
Not Defined44

Эксплуатационная пригодность

High9
Functional1
Proof-of-Concept71
Unproven13
Not Defined179

Вектор доступа

Not Defined0
Physical0
Local28
Adjacent8
Network237

Аутентификация

Not Defined0
High1
Low23
None249

Взаимодействие с пользователем

Not Defined0
Required20
None253

C3BM Index

Последний год

CVSSv3 Base

≤10
≤20
≤32
≤412
≤514
≤6113
≤743
≤869
≤913
≤107

CVSSv3 Temp

≤10
≤20
≤34
≤411
≤544
≤6100
≤775
≤823
≤911
≤105

VulDB

≤10
≤20
≤32
≤415
≤515
≤6125
≤726
≤878
≤93
≤109

NVD

≤10
≤20
≤30
≤40
≤52
≤612
≤75
≤825
≤94
≤1011

CNA

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤80
≤90
≤100

Поставщик

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Эксплойт 0-дня

<1k0
<2k0
<5k3
<10k17
<25k156
<50k86
<100k11
≥100k0

Эксплойт сегодня

<1k191
<2k7
<5k30
<10k20
<25k20
<50k5
<100k0
≥100k0

Объем рынка эксплойтов

Последний год

🔴 CTI Деятельность

Affected Versions (250): 0.8.11, 0.8.14, 1, 1.0, 1.0.1, 1.0.2, 1.0.3, 1.0.5, 1.1, 1.1.1, 1.2, 1.2.5, 1.3, 1.3.1, 1.3.2, 1.3.3, 1.3.4, 1.3.5, 1.3.6, 1.3.6.1, 1.3.6.2, 1.3.7, 1.3.8, 1.3.9, 1.3.11, 1.3.12, 1.3.13, 1.3.14, 1.3.15, 1.3.16, 1.3.17, 1.3.18, 1.3.19, 1.3.21, 1.3.22, 1.3.23, 1.3.24, 1.3.25, 1.3.26, 1.3.27, 1.3.28, 1.3.29, 1.3.31, 1.3.32, 1.3.32-r1, 1.3.33, 1.3.34, 1.3.35, 1.3.36, 1.3.37, 1.3.38, 1.3.39, 1.3.41, 1.3.42, 1.4, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.6, 1.7, 1.7.1, 1.8, 1.9, 1.15.17, 2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 2.0.15, 2.0.16, 2.0.17, 2.0.18, 2.0.19, 2.0.21, 2.0.22, 2.0.23, 2.0.24, 2.0.25, 2.0.26, 2.0.27, 2.0.28, 2.0.29, 2.0.31, 2.0.32, 2.0.33, 2.0.34, 2.0.34-beta, 2.0.35, 2.0.36, 2.0.37, 2.0.38, 2.0.39, 2.0.41, 2.0.42, 2.0.43, 2.0.44, 2.0.45, 2.0.46, 2.0.47, 2.0.48, 2.0.49, 2.0.51, 2.0.51-dev, 2.0.52, 2.0.53, 2.0.53-dev, 2.0.54, 2.0.55, 2.0.56, 2.0.57, 2.0.58, 2.0.59, 2.0.61, 2.0.62, 2.0.63, 2.0.64, 2.0.65, 2.0a9, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.7, 2.1.8, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.2.5, 2.2.6, 2.2.7, 2.2.8, 2.2.9, 2.2.11, 2.2.12, 2.2.13, 2.2.14, 2.2.15, 2.2.16, 2.2.17, 2.2.18, 2.2.19, 2.2.21, 2.2.22, 2.2.23, 2.2.24, 2.2.25, 2.2.26, 2.2.27, 2.2.28, 2.2.29, 2.2.31, 2.2.32, 2.2.33, 2.2.34, 2.3, 2.3.1, 2.3.2, 2.3.3, 2.3.4, 2.3.5, 2.3.6, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.4.6, 2.4.7, 2.4.8, 2.4.9, 2.4.11, 2.4.12, 2.4.13, 2.4.14, 2.4.15, 2.4.16, 2.4.17, 2.4.18, 2.4.19, 2.4.21, 2.4.22, 2.4.23, 2.4.24, 2.4.25, 2.4.26, 2.4.27, 2.4.28, 2.4.29, 2.4.31, 2.4.32, 2.4.33, 2.4.34, 2.4.35, 2.4.36, 2.4.37, 2.4.38, 2.4.39, 2.4.41, 2.4.42, 2.4.43, 2.4.44, 2.4.45, 2.4.46, 2.4.47, 2.4.48, 2.4.49, 2.4.51, 2.4.52, 2.4.53, 2.4.54, 2.4.55, 2.4.56, 2.4.57, 2.7, 2.7.1, 2.7.2, 2.7.3, 2.7.4, 2.7.5, 2.7.6, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.2.5, 3.2.6, 3.2.7

Link to Product Website: https://www.apache.org/

Тип программного обеспечения: Web Server

ОпубликованоBaseTempУязвимости0dayСегодняЭ�RemCTICVE
12.12.20234.14.1Apache HTTP Server mod_proxy_cluster межсайтовый скриптинг$5k-$25k$5k-$25kNot DefinedNot Defined0.02CVE-2023-6710
19.10.20235.65.5Apache HTTP Server HTTP/2 отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-45802
19.10.20236.46.3Apache HTTP Server HTTP/2 отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-43622
19.10.20236.56.4Apache HTTP Server mod_macro повреждение памяти$5k-$25k$5k-$25kNot DefinedOfficial Fix0.04CVE-2023-31122
07.03.20237.47.3Apache HTTP Server mod_proxy эскалация привилегий$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-25690
07.03.20236.96.7Apache HTTP Server mod_proxy_uwsgi эскалация привилегий$5k-$25k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-27522
18.01.20237.47.2Apache HTTP Server Header повреждение памяти$5k-$25k$5k-$25kNot DefinedOfficial Fix0.02CVE-2006-20001
18.01.20235.35.2Apache HTTP Server эскалация привилегий$5k-$25k$5k-$25kNot DefinedOfficial Fix0.04CVE-2022-37436
18.01.20238.18.0Apache HTTP Server mod_proxy_ajp эскалация привилегий$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-36760
09.06.20227.37.0Apache HTTP Server Connection Header эскалация привилегий$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-31813
09.06.20225.35.1Apache HTTP Server r:wsread раскрытие информации$5k-$25k$0-$5kNot DefinedOfficial Fix0.07CVE-2022-30556
09.06.20225.35.1Apache HTTP Server mod_sed отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-30522
09.06.20225.35.1Apache HTTP Server ap_rputs повреждение памяти$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-28614
09.06.20227.37.0Apache HTTP Server mod_isapi раскрытие информации$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-28330
09.06.20227.37.0Apache HTTP Server mod_proxy_ajp эскалация привилегий$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2022-26377
09.06.20225.35.1Apache HTTP Server Lua Script r:parsebody отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2022-29404
09.06.20227.37.0Apache HTTP Server ap_strcmp_match повреждение памяти$25k-$100k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-28615
14.03.20227.37.0Apache HTTP Server mod_sed повреждение памяти$25k-$100k$5k-$25kNot DefinedOfficial Fix0.09CVE-2022-23943
14.03.20224.34.1Apache HTTP Server Request Body отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-22719
14.03.20227.37.0Apache HTTP Server Request Body повреждение памяти$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2022-22721
14.03.20227.37.0Apache HTTP Server Inbound Connection эскалация привилегий$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2022-22720
20.12.20216.76.6Apache HTTP Server Proxy отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.09CVE-2021-44224
20.12.20218.58.4Apache HTTP Server mod_lua Multipart Parser r:parsebody повреждение памяти$25k-$100k$0-$5kNot DefinedOfficial Fix0.02CVE-2021-44790
07.10.20217.37.0Apache HTTP Server Incomplete Fix CVE-2021-41773 обход каталога$25k-$100k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-42013
05.10.20215.35.1Apache HTTP Server HTTP/2 Request отказ в обслуживании$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2021-41524

248 больше записей не показано

больше записей по Apache

Interested in the pricing of exploits?

See the underground prices here!