CVE-2021-45105
- EPSS 100%
- Veröffentlicht 18.12.2021 12:15:07
- Zuletzt bearbeitet 29.05.2026 13:16:19
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service wh...
CVE-2016-2518
- EPSS 15.08%
- Veröffentlicht 30.01.2017 21:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.
CVE-2016-5387
- EPSS 55.72%
- Veröffentlicht 19.07.2016 02:00:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an app...
CVE-2016-5385
- EPSS 50.43%
- Veröffentlicht 19.07.2016 02:00:17
- Zuletzt bearbeitet 06.05.2026 22:30:45
PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attacker...
- EPSS 94.86%
- Veröffentlicht 28.01.2015 19:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 fu...
CVE-2014-2532
- EPSS 4.75%
- Veröffentlicht 18.03.2014 05:18:19
- Zuletzt bearbeitet 28.05.2026 18:16:22
sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.