Free Trial

CVE-2022-31813 : Apache HTTP Server: mod_proxy X-Forwarded-For Dropped By Hop-by-hop Mechanism

Description

Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.

For more information

https://httpd.apache.org/security/vulnerabilities_24.html

Common Vulnerabilityies and Exposures

CVE-2022-31813 : Apache HTTP Server: mod_proxy X-Forwarded-For Dropped By Hop-by-hop Mechanism
CVE-2022-31813 : Apache HTTP Server: mod_proxy X-Forwarded-For Dropped By Hop-by-hop Mechanism

Contact us to get started

CVE-2024-20329 : CISCO ASA UP TO 9.19.1.18 EXPRESSION/COMMAND DELIMITERS

CVE-2024-20329 : CISCO ASA UP TO 9.19.1.18 EXPRESSION/COMMAND DELIMITERS

Description A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker

Learn more
CVE-2024-47575 : FONTINET FORTIMANAGER UP TO 7.6.0 REQUEST MISSING AUTHENTICATION

CVE-2024-47575 : FONTINET FORTIMANAGER UP TO 7.6.0 REQUEST MISSING AUTHENTICATION

Description A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0

Learn more
CVE-2024-47901 : SIEMENS INTERMESH 7177 HYBRID 2.0 SUBSCRIBER PRIOR 8.2.12 WEB SERVER OS COMMAND INJECTION

CVE-2024-47901 : SIEMENS INTERMESH 7177 HYBRID 2.0 SUBSCRIBER PRIOR 8.2.12 WEB SERVER OS COMMAND INJECTION

Description A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber

Learn more