[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-36760":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":65,"related":66,"reserved_at":9,"published_at":74,"modified_at":75,"state":76,"summary":77,"references_raw":86,"kevs":98,"epss":99,"epss_history":102,"metrics":368,"affected":376},"CVE-2022-36760","Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to.  This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-444","Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')","The product acts as an intermediary HTTP agent\n         (such as a proxy or firewall) in the data flow between two\n         entities such as a client and server, but it does not\n         interpret malformed HTTP requests or responses in ways that\n         are consistent with how the messages will be processed by\n         those entities that are at the ultimate destination.","weakness","Incomplete","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-273","HTTP Response Smuggling",[],{"id":24,"name":25,"techniques":26},"CAPEC-33","HTTP Request Smuggling",[],[],[],[],[31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63],{"_key":32},"ALPINE-CVE-2022-36760",{"_key":34},"SUSE-SU-2023:0321-1",{"_key":36},"SUSE-SU-2023:0183-1",{"_key":38},"SUSE-SU-2023:0185-1",{"_key":40},"SUSE-SU-2023:0294-1",{"_key":42},"SUSE-SU-2023:0322-1",{"_key":44},"OPENSUSE-SU-2024:12635-1",{"_key":46},"DLA-3351-1",{"_key":48},"DSA-5376-1",{"_key":50},"RHSA-2023:4629",{"_key":52},"RHSA-2023:0852",{"_key":54},"RHSA-2023:0970",{"_key":56},"MGASA-2023-0032",{"_key":58},"USN-5839-1",{"_key":60},"DEBIAN-CVE-2022-36760",{"_key":62},"USN-5834-1",{"_key":64},"UBUNTU-CVE-2022-36760",[],[67,68,69,70,71,72,73],{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":56},"2023-01-17T19:11:55.106Z","2025-04-04T18:08:02.696Z","Modified",{"cisa_kev":78,"cisa_ransomware":78,"cisa_vendor":9,"epss_severity":79,"epss_score":80,"severity":81,"severity_score":82,"severity_version":83,"severity_source":84,"severity_vector":85,"severity_status":76},false,"low",0.0031,"critical",9,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",[87,94],{"url":88,"sources":89,"tags":91},"https://httpd.apache.org/security/vulnerabilities_24.html",[84,90],"nvd",[92,93],"Vendor Advisory","Mailing List",{"url":95,"sources":96,"tags":97},"https://security.gentoo.org/glsa/202309-01",[84,90],[],[],{"date":100,"score":80,"percentile":101},"2026-06-04",0.54493,[103,107,110,113,116,119,122,125,128,131,134,137,140,143,146,150,153,156,159,161,164,167,170,173,176,179,182,185,189,192,194,197,200,203,206,208,211,214,217,220,223,226,229,231,234,237,240,243,246,249,252,255,258,261,265,268,270,273,276,279,282,285,287,289,292,296,299,302,305,308,311,314,317,320,323,325,328,331,333,335,338,341,344,347,350,353,356,358,361,364],{"date":104,"score":105,"percentile":106},"2025-11-04",0.00295,0.52396,{"date":108,"score":105,"percentile":109},"2025-11-05",0.52369,{"date":111,"score":105,"percentile":112},"2025-11-06",0.52387,{"date":114,"score":105,"percentile":115},"2025-11-07",0.52408,{"date":117,"score":105,"percentile":118},"2025-11-08",0.5241,{"date":120,"score":105,"percentile":121},"2025-11-09",0.52406,{"date":123,"score":105,"percentile":124},"2025-11-10",0.52377,{"date":126,"score":105,"percentile":127},"2025-11-11",0.52391,{"date":129,"score":105,"percentile":130},"2025-11-12",0.52418,{"date":132,"score":105,"percentile":133},"2025-11-13",0.52422,{"date":135,"score":105,"percentile":136},"2025-11-14",0.52425,{"date":138,"score":105,"percentile":139},"2025-11-15",0.52419,{"date":141,"score":105,"percentile":142},"2025-11-16",0.52399,{"date":144,"score":105,"percentile":145},"2025-11-17",0.52381,{"date":147,"score":148,"percentile":149},"2025-11-18",0.06481,0.90153,{"date":151,"score":148,"percentile":152},"2025-11-19",0.90157,{"date":154,"score":148,"percentile":155},"2025-11-20",0.90161,{"date":157,"score":105,"percentile":158},"2025-11-21",0.52394,{"date":160,"score":105,"percentile":158},"2025-11-22",{"date":162,"score":105,"percentile":163},"2025-11-23",0.52355,{"date":165,"score":105,"percentile":166},"2025-11-24",0.52347,{"date":168,"score":105,"percentile":169},"2025-11-25",0.5235,{"date":171,"score":105,"percentile":172},"2025-11-26",0.52353,{"date":174,"score":105,"percentile":175},"2025-11-27",0.52359,{"date":177,"score":105,"percentile":178},"2025-11-28",0.52328,{"date":180,"score":105,"percentile":181},"2025-11-29",0.52304,{"date":183,"score":105,"percentile":184},"2025-11-30",0.52295,{"date":186,"score":187,"percentile":188},"2025-12-01",0.00154,0.36768,{"date":190,"score":187,"percentile":191},"2025-12-02",0.36776,{"date":193,"score":187,"percentile":191},"2025-12-03",{"date":195,"score":105,"percentile":196},"2025-12-04",0.52308,{"date":198,"score":105,"percentile":199},"2025-12-05",0.52329,{"date":201,"score":105,"percentile":202},"2025-12-06",0.5233,{"date":204,"score":105,"percentile":205},"2025-12-07",0.52319,{"date":207,"score":105,"percentile":205},"2025-12-08",{"date":209,"score":105,"percentile":210},"2025-12-09",0.52337,{"date":212,"score":105,"percentile":213},"2025-12-10",0.52397,{"date":215,"score":105,"percentile":216},"2025-12-11",0.52415,{"date":218,"score":105,"percentile":219},"2025-12-12",0.52441,{"date":221,"score":105,"percentile":222},"2025-12-13",0.52435,{"date":224,"score":105,"percentile":225},"2025-12-14",0.52421,{"date":227,"score":105,"percentile":228},"2025-12-15",0.52407,{"date":230,"score":105,"percentile":225},"2025-12-16",{"date":232,"score":105,"percentile":233},"2025-12-17",0.52437,{"date":235,"score":105,"percentile":236},"2025-12-18",0.52477,{"date":238,"score":105,"percentile":239},"2025-12-19",0.52481,{"date":241,"score":105,"percentile":242},"2025-12-20",0.52464,{"date":244,"score":105,"percentile":245},"2025-12-21",0.52442,{"date":247,"score":105,"percentile":248},"2025-12-22",0.52423,{"date":250,"score":105,"percentile":251},"2025-12-23",0.52426,{"date":253,"score":105,"percentile":254},"2025-12-24",0.5244,{"date":256,"score":105,"percentile":257},"2025-12-25",0.52486,{"date":259,"score":105,"percentile":260},"2025-12-26",0.52479,{"date":262,"score":263,"percentile":264},"2025-12-27",0.00238,0.46895,{"date":266,"score":105,"percentile":267},"2025-12-28",0.52457,{"date":269,"score":105,"percentile":222},"2025-12-29",{"date":271,"score":105,"percentile":272},"2025-12-30",0.52427,{"date":274,"score":105,"percentile":275},"2025-12-31",0.52445,{"date":277,"score":187,"percentile":278},"2026-01-01",0.36911,{"date":280,"score":187,"percentile":281},"2026-01-02",0.36884,{"date":283,"score":187,"percentile":284},"2026-01-03",0.36873,{"date":286,"score":105,"percentile":130},"2026-01-04",{"date":288,"score":105,"percentile":121},"2026-01-05",{"date":290,"score":105,"percentile":291},"2026-01-06",0.52413,{"date":293,"score":294,"percentile":295},"2026-01-07",0.00271,0.50309,{"date":297,"score":294,"percentile":298},"2026-01-08",0.50334,{"date":300,"score":294,"percentile":301},"2026-01-09",0.50317,{"date":303,"score":294,"percentile":304},"2026-01-10",0.50314,{"date":306,"score":294,"percentile":307},"2026-01-11",0.50294,{"date":309,"score":294,"percentile":310},"2026-01-12",0.50251,{"date":312,"score":294,"percentile":313},"2026-01-13",0.50227,{"date":315,"score":294,"percentile":316},"2026-01-14",0.50276,{"date":318,"score":294,"percentile":319},"2026-01-15",0.5028,{"date":321,"score":294,"percentile":322},"2026-01-16",0.50301,{"date":324,"score":294,"percentile":319},"2026-01-17",{"date":326,"score":294,"percentile":327},"2026-01-18",0.50255,{"date":329,"score":294,"percentile":330},"2026-01-19",0.50228,{"date":332,"score":294,"percentile":313},"2026-01-20",{"date":334,"score":294,"percentile":330},"2026-01-21",{"date":336,"score":294,"percentile":337},"2026-01-22",0.50234,{"date":339,"score":294,"percentile":340},"2026-01-23",0.50284,{"date":342,"score":294,"percentile":343},"2026-01-24",0.50289,{"date":345,"score":294,"percentile":346},"2026-01-25",0.50241,{"date":348,"score":294,"percentile":349},"2026-01-26",0.50215,{"date":351,"score":294,"percentile":352},"2026-01-27",0.50219,{"date":354,"score":294,"percentile":355},"2026-01-28",0.50232,{"date":357,"score":294,"percentile":330},"2026-01-29",{"date":359,"score":294,"percentile":360},"2026-01-30",0.50231,{"date":362,"score":294,"percentile":363},"2026-01-31",0.50237,{"date":365,"score":366,"percentile":367},"2026-02-01",0.00142,0.34751,[369,374],{"source":84,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":370,"cvss_v4_0":9},{"baseScore":82,"baseSeverity":371,"vectorString":85,"impactScore":372,"exploitabilityScore":373},"CRITICAL",10,5.6,{"source":90,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":375,"cvss_v4_0":9},{"baseScore":82,"baseSeverity":371,"vectorString":85,"impactScore":372,"exploitabilityScore":373},[377,389],{"ecosystem":9,"name":378,"vendor":379,"product":380,"cpe_part":381,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":382},"Apache HTTP Server","apache software foundation","apache http server","a",[383],{"version":384,"is_range":385,"range_type":84,"version_start":386,"version_start_type":387,"version_end":388,"version_end_type":387,"fixed_in":9},">= 2.4, \u003C= 2.4.54",true,"2.4","including","2.4.54",{"ecosystem":9,"name":390,"vendor":9,"product":390,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":391},"HTTP Server",[392],{"version":393,"is_range":385,"range_type":394,"version_start":395,"version_start_type":387,"version_end":396,"version_end_type":397,"fixed_in":9},"gte2.4.0_lt2.4.55","cpe","2.4.0","2.4.55","excluding"]