Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Huawei EulerOS Local Security Checks
Title:Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2020-2165)
Summary:The remote host is missing an update for the Huawei EulerOS; 'httpd' package(s) announced via the EulerOS-SA-2020-2165 advisory.
The remote host is missing an update for the Huawei EulerOS
'httpd' package(s) announced via the EulerOS-SA-2020-2165 advisory.

Vulnerability Insight:
Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via 'H2Push off' will mitigate this vulnerability for unpatched servers.(CVE-2020-9490)

Affected Software/OS:
'httpd' package(s) on Huawei EulerOS V2.0SP9.

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-9490
Debian Security Information: DSA-4757 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:1285 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:1293 (Google Search)
SuSE Security Announcement: openSUSE-SU-2020:1792 (Google Search)
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2020 E-Soft Inc. All rights reserved.