[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-0197":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":53,"related":54,"reserved_at":9,"published_at":58,"modified_at":59,"state":60,"summary":61,"references_raw":70,"kevs":205,"epss":206,"epss_history":209,"metrics":470,"affected":479},"CVE-2019-0197","A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-444","Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')","The product acts as an intermediary HTTP agent\n         (such as a proxy or firewall) in the data flow between two\n         entities such as a client and server, but it does not\n         interpret malformed HTTP requests or responses in ways that\n         are consistent with how the messages will be processed by\n         those entities that are at the ultimate destination.","weakness","Incomplete","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-273","HTTP Response Smuggling",[],{"id":24,"name":25,"techniques":26},"CAPEC-33","HTTP Request Smuggling",[],[],[],[],[31,33,35,37,39,41,43,45,47,49,51],{"_key":32},"ALPINE-CVE-2019-0197",{"_key":34},"SUSE-SU-2019:0873-1",{"_key":36},"SUSE-SU-2019:0878-1",{"_key":38},"OPENSUSE-SU-2019:1209-1",{"_key":40},"UBUNTU-CVE-2019-0197",{"_key":42},"USN-4113-1",{"_key":44},"DEBIAN-CVE-2019-0197",{"_key":46},"RHSA-2019:3932",{"_key":48},"RHSA-2019:3933",{"_key":50},"RHSA-2020:2644",{"_key":52},"RHSA-2020:4751",[],[55,56,57],{"_key":34},{"_key":36},{"_key":38},"2019-06-11T21:35:52.000Z","2024-08-04T17:44:14.751Z","Modified",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":63,"epss_score":64,"severity":65,"severity_score":66,"severity_version":67,"severity_source":68,"severity_vector":69,"severity_status":60},false,"low",0.02193,"medium",4.9,"v2.0","nvd","AV:N/AC:M/Au:S/C:N/I:P/A:P",[71,78,85,91,96,101,107,111,115,119,123,127,131,135,139,144,148,153,157,161,165,169,173,177,181,185,189,193,197,201],{"url":72,"sources":73,"tags":75},"https://httpd.apache.org/security/vulnerabilities_24.html",[74,68],"cve.org",[76,77],"X Refsource CONFIRM","Vendor Advisory",{"url":79,"sources":80,"tags":81},"http://www.openwall.com/lists/oss-security/2019/04/02/2",[74,68],[82,83,84],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":86,"sources":87,"tags":88},"http://www.securityfocus.com/bid/107665",[74,68],[89,90,84],"VDB Entry","X Refsource BID",{"url":92,"sources":93,"tags":94},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WETXNQWNQLWHV6XNW6YTO5UGDTIWAQGT/",[74,68],[77,95],"X Refsource FEDORA",{"url":97,"sources":98,"tags":99},"https://lists.apache.org/thread.html/e0b8f6e858b1c8ec2ce8e291a2c543d438915037c7af661ab6d33808%40%3Cdev.httpd.apache.org%3E",[74,68],[100],"X Refsource MISC",{"url":102,"sources":103,"tags":104},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00051.html",[74,68],[77,105,82,106,84],"X Refsource SUSE","Patch",{"url":108,"sources":109,"tags":110},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00061.html",[74,68],[77,105,82,106,84],{"url":112,"sources":113,"tags":114},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00084.html",[74,68],[77,105,82,106,84],{"url":116,"sources":117,"tags":118},"https://support.f5.com/csp/article/K44591505",[74,68],[76,84],{"url":120,"sources":121,"tags":122},"https://security.netapp.com/advisory/ntap-20190617-0002/",[74,68],[76,84],{"url":124,"sources":125,"tags":126},"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",[74,68],[100,106,84],{"url":128,"sources":129,"tags":130},"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":132,"sources":133,"tags":134},"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":136,"sources":137,"tags":138},"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us",[74,68],[76,84],{"url":140,"sources":141,"tags":142},"https://usn.ubuntu.com/4113-1/",[74,68],[77,143,84],"X Refsource UBUNTU",{"url":145,"sources":146,"tags":147},"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",[74,68],[100,106,84],{"url":149,"sources":150,"tags":151},"https://access.redhat.com/errata/RHSA-2019:3933",[74,68],[77,152,84],"X Refsource REDHAT",{"url":154,"sources":155,"tags":156},"https://access.redhat.com/errata/RHSA-2019:3935",[74,68],[77,152,84],{"url":158,"sources":159,"tags":160},"https://access.redhat.com/errata/RHSA-2019:3932",[74,68],[77,152,84],{"url":162,"sources":163,"tags":164},"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":166,"sources":167,"tags":168},"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":170,"sources":171,"tags":172},"https://www.oracle.com/security-alerts/cpuapr2020.html",[74,68],[100,84],{"url":174,"sources":175,"tags":176},"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":178,"sources":179,"tags":180},"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":182,"sources":183,"tags":184},"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":186,"sources":187,"tags":188},"https://lists.apache.org/thread.html/r03ee478b3dda3e381fd6189366fa7af97c980d2f602846eef935277d%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":190,"sources":191,"tags":192},"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":194,"sources":195,"tags":196},"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":198,"sources":199,"tags":200},"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],{"url":202,"sources":203,"tags":204},"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E",[74,68],[82,83],[],{"date":207,"score":64,"percentile":208},"2026-06-04",0.84705,[210,214,217,220,223,226,229,232,235,238,241,243,246,249,252,256,259,262,265,268,271,273,275,277,280,283,285,288,292,295,298,300,302,304,306,308,311,314,317,320,323,326,329,332,335,338,341,344,347,349,352,355,358,361,365,368,371,374,376,379,382,384,388,391,394,397,400,403,406,409,412,414,417,420,423,426,428,431,434,437,440,443,446,449,452,455,458,461,464,467],{"date":211,"score":212,"percentile":213},"2025-11-04",0.02235,0.83981,{"date":215,"score":212,"percentile":216},"2025-11-05",0.83987,{"date":218,"score":212,"percentile":219},"2025-11-06",0.8399,{"date":221,"score":212,"percentile":222},"2025-11-07",0.83995,{"date":224,"score":212,"percentile":225},"2025-11-08",0.83999,{"date":227,"score":212,"percentile":228},"2025-11-09",0.83992,{"date":230,"score":212,"percentile":231},"2025-11-10",0.83988,{"date":233,"score":212,"percentile":234},"2025-11-11",0.83994,{"date":236,"score":212,"percentile":237},"2025-11-12",0.84005,{"date":239,"score":212,"percentile":240},"2025-11-13",0.84012,{"date":242,"score":212,"percentile":240},"2025-11-14",{"date":244,"score":212,"percentile":245},"2025-11-15",0.84006,{"date":247,"score":212,"percentile":248},"2025-11-16",0.84007,{"date":250,"score":212,"percentile":251},"2025-11-17",0.84009,{"date":253,"score":254,"percentile":255},"2025-11-18",0.06797,0.90407,{"date":257,"score":254,"percentile":258},"2025-11-19",0.90411,{"date":260,"score":254,"percentile":261},"2025-11-20",0.90415,{"date":263,"score":212,"percentile":264},"2025-11-21",0.84021,{"date":266,"score":212,"percentile":267},"2025-11-22",0.8402,{"date":269,"score":212,"percentile":270},"2025-11-23",0.8401,{"date":272,"score":212,"percentile":270},"2025-11-24",{"date":274,"score":212,"percentile":237},"2025-11-25",{"date":276,"score":212,"percentile":245},"2025-11-26",{"date":278,"score":212,"percentile":279},"2025-11-27",0.84004,{"date":281,"score":212,"percentile":282},"2025-11-28",0.83986,{"date":284,"score":212,"percentile":225},"2025-11-29",{"date":286,"score":212,"percentile":287},"2025-11-30",0.84002,{"date":289,"score":290,"percentile":291},"2025-12-01",0.00588,0.68387,{"date":293,"score":290,"percentile":294},"2025-12-02",0.68394,{"date":296,"score":290,"percentile":297},"2025-12-03",0.68391,{"date":299,"score":212,"percentile":248},"2025-12-04",{"date":301,"score":212,"percentile":240},"2025-12-05",{"date":303,"score":212,"percentile":240},"2025-12-06",{"date":305,"score":212,"percentile":237},"2025-12-07",{"date":307,"score":212,"percentile":248},"2025-12-08",{"date":309,"score":212,"percentile":310},"2025-12-09",0.84025,{"date":312,"score":212,"percentile":313},"2025-12-10",0.84047,{"date":315,"score":212,"percentile":316},"2025-12-11",0.84059,{"date":318,"score":212,"percentile":319},"2025-12-12",0.84067,{"date":321,"score":212,"percentile":322},"2025-12-13",0.8406,{"date":324,"score":212,"percentile":325},"2025-12-14",0.84061,{"date":327,"score":212,"percentile":328},"2025-12-15",0.84062,{"date":330,"score":212,"percentile":331},"2025-12-16",0.84069,{"date":333,"score":212,"percentile":334},"2025-12-17",0.84074,{"date":336,"score":212,"percentile":337},"2025-12-18",0.8408,{"date":339,"score":212,"percentile":340},"2025-12-19",0.84084,{"date":342,"score":212,"percentile":343},"2025-12-20",0.84078,{"date":345,"score":212,"percentile":346},"2025-12-21",0.84076,{"date":348,"score":212,"percentile":334},"2025-12-22",{"date":350,"score":212,"percentile":351},"2025-12-23",0.84079,{"date":353,"score":212,"percentile":354},"2025-12-24",0.84088,{"date":356,"score":212,"percentile":357},"2025-12-25",0.84104,{"date":359,"score":212,"percentile":360},"2025-12-26",0.84105,{"date":362,"score":363,"percentile":364},"2025-12-27",0.01519,0.80858,{"date":366,"score":212,"percentile":367},"2025-12-28",0.84093,{"date":369,"score":212,"percentile":370},"2025-12-29",0.84087,{"date":372,"score":212,"percentile":373},"2025-12-30",0.84092,{"date":375,"score":212,"percentile":360},"2025-12-31",{"date":377,"score":290,"percentile":378},"2026-01-01",0.68632,{"date":380,"score":290,"percentile":381},"2026-01-02",0.68621,{"date":383,"score":290,"percentile":381},"2026-01-03",{"date":385,"score":386,"percentile":387},"2026-01-04",0.02274,0.84217,{"date":389,"score":386,"percentile":390},"2026-01-05",0.84211,{"date":392,"score":386,"percentile":393},"2026-01-06",0.84218,{"date":395,"score":386,"percentile":396},"2026-01-07",0.84214,{"date":398,"score":386,"percentile":399},"2026-01-08",0.84223,{"date":401,"score":386,"percentile":402},"2026-01-09",0.84226,{"date":404,"score":386,"percentile":405},"2026-01-10",0.84221,{"date":407,"score":386,"percentile":408},"2026-01-11",0.8422,{"date":410,"score":386,"percentile":411},"2026-01-12",0.84216,{"date":413,"score":386,"percentile":396},"2026-01-13",{"date":415,"score":386,"percentile":416},"2026-01-14",0.84234,{"date":418,"score":386,"percentile":419},"2026-01-15",0.84232,{"date":421,"score":386,"percentile":422},"2026-01-16",0.84241,{"date":424,"score":386,"percentile":425},"2026-01-17",0.84246,{"date":427,"score":386,"percentile":422},"2026-01-18",{"date":429,"score":386,"percentile":430},"2026-01-19",0.84235,{"date":432,"score":386,"percentile":433},"2026-01-20",0.84239,{"date":435,"score":386,"percentile":436},"2026-01-21",0.84244,{"date":438,"score":386,"percentile":439},"2026-01-22",0.84248,{"date":441,"score":386,"percentile":442},"2026-01-23",0.84267,{"date":444,"score":386,"percentile":445},"2026-01-24",0.84275,{"date":447,"score":386,"percentile":448},"2026-01-25",0.84274,{"date":450,"score":386,"percentile":451},"2026-01-26",0.84272,{"date":453,"score":386,"percentile":454},"2026-01-27",0.84276,{"date":456,"score":386,"percentile":457},"2026-01-28",0.84279,{"date":459,"score":386,"percentile":460},"2026-01-29",0.8428,{"date":462,"score":386,"percentile":463},"2026-01-30",0.84284,{"date":465,"score":386,"percentile":466},"2026-01-31",0.84285,{"date":468,"score":290,"percentile":469},"2026-02-01",0.6871,[471],{"source":68,"cvss_v2_0":472,"cvss_v3_0":9,"cvss_v3_1":474,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":9,"vectorString":69,"impactScore":66,"exploitabilityScore":473},6.8,{"baseScore":475,"baseSeverity":476,"vectorString":477,"impactScore":475,"exploitabilityScore":478},4.2,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",4.1,[480,489,498,510,516,524,537,545,553,559,569,577],{"ecosystem":9,"name":481,"vendor":482,"product":483,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":485},"Apache HTTP Server","apache software foundation","apache http server","a",[486],{"version":487,"is_range":62,"range_type":74,"version_start":487,"version_start_type":488,"version_end":487,"version_end_type":488,"fixed_in":9},"2.4.34 to 2.4.38","including",{"ecosystem":9,"name":490,"vendor":9,"product":490,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":491},"HTTP Server",[492],{"version":493,"is_range":494,"range_type":495,"version_start":496,"version_start_type":488,"version_end":497,"version_end_type":488,"fixed_in":9},"gte2.4.34_lte2.4.38",true,"cpe","2.4.34","2.4.38",{"ecosystem":9,"name":499,"vendor":500,"product":501,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":503},"ubuntu linux","canonical","ubuntu_linux","o",[504,506,508],{"version":505,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":507,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":509,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.04",{"ecosystem":9,"name":511,"vendor":512,"product":511,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":513},"fedora","fedoraproject",[514],{"version":515,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":517,"vendor":518,"product":517,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":519},"leap","opensuse",[520,522],{"version":521,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"version":523,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.3",{"ecosystem":9,"name":525,"vendor":526,"product":527,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":528},"communications session report manager","oracle","communications_session_report_manager",[529,531,533,535],{"version":530,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0",{"version":532,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.1.0",{"version":534,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.1.1",{"version":536,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.2.0",{"ecosystem":9,"name":538,"vendor":526,"product":539,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":540},"communications session route manager","communications_session_route_manager",[541,542,543,544],{"version":530,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":532,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":534,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":536,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":546,"vendor":526,"product":547,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":548},"enterprise manager ops center","enterprise_manager_ops_center",[549,551],{"version":550,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.3.3",{"version":552,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.4.0",{"ecosystem":9,"name":554,"vendor":526,"product":555,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":556},"http server","http_server",[557],{"version":558,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.1.3.0",{"ecosystem":9,"name":560,"vendor":526,"product":561,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":562},"instantis enterprisetrack","instantis_enterprisetrack",[563,565,567],{"version":564,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"17.1",{"version":566,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"17.2",{"version":568,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"17.3",{"ecosystem":9,"name":570,"vendor":526,"product":571,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":572},"retail xstore point of service","retail_xstore_point_of_service",[573,575],{"version":574,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":576,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.1",{"ecosystem":9,"name":578,"vendor":579,"product":580,"cpe_part":484,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":581},"jboss core services","redhat","jboss_core_services",[582],{"version":583,"is_range":62,"range_type":495,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0"]