Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Apache HTTP Server Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-11984)

Description

Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure and possible RCE

Remediation

References

Related Vulnerabilities

Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1487)

WordPress Plugin Search & Filter Cross-Site Scripting (1.2.15)

Jenkins Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2020-2105)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.14)

Apache HTTP Server Use After Free Vulnerability (CVE-2017-9789)

Severity

Critical

Classification

CVE-2020-11984 CWE-120 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities