Описание
Multiple CWE-476 NULL Pointer Dereference vulnerabilities were found in GoAhead Web Server up to version 6.0.0 when compiled with the ME_GOAHEAD_REPLACE_MALLOC flag. Without a memory notifier for allocation failures, remote attackers can exploit these vulnerabilities by sending malicious requests, leading to a crash and Denial of Service (DoS).
EPSS
Процентиль: 62%
0.0043
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 5.9
github
больше 1 года назад
Multiple CWE-476 NULL Pointer Dereference vulnerabilities were found in GoAhead Web Server up to version 6.0.0 when compiled with the ME_GOAHEAD_REPLACE_MALLOC flag. Without a memory notifier for allocation failures, remote attackers can exploit these vulnerabilities by sending malicious requests, leading to a crash and Denial of Service (DoS).
EPSS
Процентиль: 62%
0.0043
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-476