- Home
- CVEs with nessus.description==Apache httpd allows remote attackers to read secret data from process
memory if the Limit directive can be set in a user's .htaccess file,
or if httpd.conf has certain misconfigurations, aka Optionsbleed. The
attacker sends an unauthenticated OPTIONS HTTP request when attempting
to read secret data. This is a use-after-free issue and thus secret
data is not always sent, and the specific data depends on many factors
including configuration.(CVE-2017-9798)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top