Apache HTTP Server 2.4.49/2.4.50 Incomplete Fix CVE-2021-41773 path traversal

A vulnerability classified as critical was found in Apache HTTP Server 2.4.49/2.4.50 (Web Server). This vulnerability affects an unknown code block of the component Incomplete Fix CVE-2021-41773. Upgrading to version 2.4.51 eliminates this vulnerability. The upgrade is hosted for download at httpd.apache.org.

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2022-36980 : IVANTI AVALANCHE 6.3.2.3490 ENTERPRISESERVER SERVICE TOCTOU

CVE-2022-36980 : IVANTI AVALANCHE 6.3.2.3490 ENTERPRISESERVER SERVICE TOCTOU

Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required

CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW

CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW

Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to

CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION

CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION

Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely