Количество 11
Количество 11
GHSA-x2hm-ghg4-c67m
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.
CVE-2023-27371
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.
CVE-2023-27371
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.
CVE-2023-27371
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function.
CVE-2023-27371
GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) ...
SUSE-SU-2023:1944-1
Security update for libmicrohttpd
SUSE-SU-2023:1686-1
Security update for libmicrohttpd
ROS-20240904-08
Уязвимость libmicrohttpd
ELSA-2023-7090
ELSA-2023-7090: libmicrohttpd security update (MODERATE)
ELSA-2023-6566
ELSA-2023-6566: libmicrohttpd security update (MODERATE)
BDU:2024-06864
Уязвимость функции MHD_create_post_processor() реализация веб-сервера HTTP libmicrohttpd, позволяющая нарушителю вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-x2hm-ghg4-c67m GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function. | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function. | CVSS3: 5.9 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function. | CVSS3: 5.9 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field, which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function. | CVSS3: 5.9 | 0% Низкий | больше 2 лет назад |
| CVE-2023-27371 GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) ... | CVSS3: 5.9 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:1944-1 Security update for libmicrohttpd | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:1686-1 Security update for libmicrohttpd | 0% Низкий | около 2 лет назад | |
 | ROS-20240904-08 Уязвимость libmicrohttpd | CVSS3: 5.9 | 0% Низкий | 10 месяцев назад |
| ELSA-2023-7090 ELSA-2023-7090: libmicrohttpd security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-6566 ELSA-2023-6566: libmicrohttpd security update (MODERATE) | больше 1 года назад | ||
 | BDU:2024-06864 Уязвимость функции MHD_create_post_processor() реализация веб-сервера HTTP libmicrohttpd, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.9 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу