Every CVE whose affected-product data names Modwsgi Mod Wsgi, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2014-0242 — CVSS 7.5 (high): mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the…
CVE-2022-2255 — CVSS 7.5 (high): A vulnerability was found in mod_wsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker…
CVE-2014-8583 — CVSS 6.9 (medium): mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped…
CVE-2014-0240 — CVSS 6.2 (medium): The mod_wsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on…