exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 12

CVE-2023-27371

почти 3 года назад

GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.

CVSS3: 5.9

EPSS: Низкий

CVE-2023-27371

почти 3 года назад

CVSS3: 5.9

EPSS: Низкий

CVE-2023-27371

почти 3 года назад

CVSS3: 5.9

EPSS: Низкий

CVE-2023-27371

почти 3 года назад

GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.

CVSS3: 5.9

EPSS: Низкий

CVE-2023-27371

почти 3 года назад

GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) ...

CVSS3: 5.9

EPSS: Низкий

SUSE-SU-2023:1944-1

больше 2 лет назад

Security update for libmicrohttpd

EPSS: Низкий

SUSE-SU-2023:1686-1

больше 2 лет назад

Security update for libmicrohttpd

EPSS: Низкий

ROS-20240904-08

больше 1 года назад

Уязвимость libmicrohttpd

CVSS3: 5.9

EPSS: Низкий

GHSA-x2hm-ghg4-c67m

почти 3 года назад

CVSS3: 7.5

EPSS: Низкий

ELSA-2023-7090

около 2 лет назад

ELSA-2023-7090: libmicrohttpd security update (MODERATE)

EPSS: Низкий

ELSA-2023-6566

около 2 лет назад

ELSA-2023-6566: libmicrohttpd security update (MODERATE)

EPSS: Низкий

BDU:2024-06864

почти 3 года назад

Уязвимость функции MHD_create_post_processor() реализация веб-сервера HTTP libmicrohttpd, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.9

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.	CVSS3: 5.9	0% Низкий	почти 3 года назад
CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) ...	CVSS3: 5.9	0% Низкий	почти 3 года назад
SUSE-SU-2023:1944-1 Security update for libmicrohttpd		0% Низкий	больше 2 лет назад
SUSE-SU-2023:1686-1 Security update for libmicrohttpd		0% Низкий	больше 2 лет назад
ROS-20240904-08 Уязвимость libmicrohttpd	CVSS3: 5.9	0% Низкий	больше 1 года назад
GHSA-x2hm-ghg4-c67m GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.	CVSS3: 7.5	0% Низкий	почти 3 года назад
ELSA-2023-7090 ELSA-2023-7090: libmicrohttpd security update (MODERATE)			около 2 лет назад
ELSA-2023-6566 ELSA-2023-6566: libmicrohttpd security update (MODERATE)			около 2 лет назад
BDU:2024-06864 Уязвимость функции MHD_create_post_processor() реализация веб-сервера HTTP libmicrohttpd, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.9	0% Низкий	почти 3 года назад

Уязвимостей на страницу