Amazon Linux 2023 : libmicrohttpd, libmicrohttpd-devel (ALAS2023-2025-1133)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1133 advisory. GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHDcreatepostprocessor method. This allows an attack...

NewStart CGSL MAIN 7.02 : libmicrohttpd Vulnerability (NS-SA-2025-0190)

The remote NewStart CGSL host, running version MAIN 7.02, has libmicrohttpd packages installed that are affected by a vulnerability: - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...

TencentOS Server 4: libmicrohttpd (TSSA-2025:0139)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0139 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

NewStart CGSL MAIN 7.02 : libmicrohttpd Vulnerability (NS-SA-2025-0091)

The remote NewStart CGSL host, running version MAIN 7.02, has libmicrohttpd packages installed that are affected by a vulnerability: - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...

Alibaba Cloud Linux 3 : 0069: libmicrohttpd (ALINUX3-SA-2024:0069)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0069 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-27371: GNU libmicrohttpd before 0.9.76...

CVE-2025-27371

In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication mechanism is used, there are ambiguities in the audience values of JWTs sent to authorization servers. The affected RFCs may include RFC 7523, and also RFC 7521, RFC 7522, RFC 910...

CVE-2025-27371

Technical details for CVE-2025-27371 are not publicly available in the provided documents. The materials do not specify affected products, versions, impact, or remediation. Monitor for updates.

CVE-2025-27371

In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication mechanism is used, there are ambiguities in the audience values of JWTs sent to authorization servers. The affected RFCs may include RFC 7523, and also RFC 7521, RFC 7522, RFC 910...

CVE-2025-27371

In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication mechanism is used, there are ambiguities in the audience values of JWTs sent to authorization servers. The affected RFCs may include RFC 7523, and also RFC 7521, RFC 7522, RFC 910...

CVE-2024-27371

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanfollowupgetnlparams, there is no input validation check on halreq-servicespecificinfolen coming from userspace, which can lead to a heap overwrite...

Moderate: Red Hat Security Advisory: libmicrohttpd security update

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

RHEL 8 : libmicrohttpd (RHSA-2024:1109)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1109 advisory. GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote...

CentOS 9 : libmicrohttpd-0.9.72-5.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libmicrohttpd-0.9.72-5.el9 build changelog. - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

EulerOS 2.0 SP5 : libmicrohttpd (EulerOS-SA-2024-1146)

According to the versions of the libmicrohttpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

RHEL 8 : libmicrohttpd (RHSA-2024:0584)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0584 advisory. GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote...

EulerOS 2.0 SP8 : libmicrohttpd (EulerOS-SA-2023-3133)

According to the versions of the libmicrohttpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the...

libmicrohttpd security update

1:0.9.59-3 - Add cve-2023-27371.patch Related: rhbz2174639 CVE-2023-27371...

Oracle Linux 9 : libmicrohttpd (ELSA-2023-6566)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6566 advisory. 1:0.9.72-5 - Add cve-2023-27371.patch Related: rhbz2174640 CVE-2023-27371 Tenable has extracted the preceding description block directly from the Oracle Linux...

Moderate: Red Hat Security Advisory: libmicrohttpd security update

An update for libmicrohttpd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

CentOS 8 : libmicrohttpd (CESA-2023:7090)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:7090 advisory. - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...