[NGINX:CVE-2013-4547] Request line parsing vulnerability
Severity
Medium
Affected Packages
1
Unaffected Packages
2
CVEs
1
nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.
| Package | Affected Version |
|---|---|
 pkg:nginx/nginx
|
>= 0.8.41, <= 1.5.6 |
| Package | Unaffected Version |
|---|---|
|
pkg:nginx/nginx
|
>= 1.5.7 |
|
pkg:nginx/nginx
|
>= 1.4.4 |
- ID
- NGINX:CVE-2013-4547
- Severity
- medium
- Published
-
2013-11-23T18:55:04
(10 years ago) - Modified
-
2013-11-23T18:55:04
(10 years ago) - Rights
- NGINX Security Team
- Other Advisories
ALAS-2013-249
DSA-2802-1
FEDORA-2013-21826
FREEBSD:94B6264A-5140-11E3-8B22-F0DEF16C5C1B| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |