Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-21687

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00706EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.6 views

CVE-2024-24263

Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...

7.5CVSS7.3AI score0.00706EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.6 views

CVE-2024-22088

Lotos WebServer through 0.1.1 commit 3eb36cc has a use-after-free in bufferavail at buffer.h via a long URI, because realloc is mishandled...

9.8CVSS6.9AI score0.00729EPSS
Exploits1References1
NVD
NVD
added 2024/02/05 6:15 p.m.8 views

CVE-2024-24263

Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...

7.5CVSS7.6AI score0.00706EPSS
Exploits1References1
Prion
Prion
added 2024/02/05 6:15 p.m.12 views

Double free

Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...

5CVSS7.6AI score0.00706EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/05 12:0 a.m.5 views

PT-2024-20331 · Unknown · Lotos Webserver

Name of the Vulnerable Software and Affected Versions: Lotos WebServer version 0.1.1 Description: A Use-After-Free UAF issue was discovered in the response append status line function at /lotos/src/response.c. This issue can be exploited, but details about the estimated number of potentially...

7.5CVSS7.4AI score0.00706EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/02/05 12:0 a.m.17 views

CVE-2024-24263

Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free UAF vulnerability via the responseappendstatusline function at /lotos/src/response.c...

7.7AI score0.00706EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/02/05 12:0 a.m.5 views

Lotos WebServer Security Vulnerability

Lotos WebServer is a small but high-performance HTTP WebServer that follows the Reactor model and uses non-blocking IO and IO multiplexing epoll ET to handle concurrency. A security vulnerability exists in Lotos WebServer version v0.1.1, which was discovered to contain a memory reuse-after-freedo...

7.5CVSS7.1AI score0.00706EPSS
Exploits1References2
CVE
CVE
added 2024/02/05 12:0 a.m.159 views

CVE-2024-24263

Lotos WebServer v0.1.1 contains a Use-After-Free (UAF) vulnerability in the function response_append_status_line (file /lotos/src/response.c). Root cause: memory reuse after freeing, enabling potential server instability or crashes. Impact: high availability (per CVSS vector AV:N/AC:L/PR:N/UI:N/S...

7.5CVSS7.5AI score0.00706EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/01/05 4:15 a.m.13 views

CVE-2024-22088

Lotos WebServer through 0.1.1 commit 3eb36cc has a use-after-free in bufferavail at buffer.h via a long URI, because realloc is mishandled...

9.8CVSS9.4AI score0.00729EPSS
Exploits1References1
OSV
OSV
added 2024/01/05 4:15 a.m.11 views

CVE-2024-22088

Lotos WebServer through 0.1.1 commit 3eb36cc has a use-after-free in bufferavail at buffer.h via a long URI, because realloc is mishandled...

9.8CVSS6.9AI score
Exploits0References1
CNNVD
CNNVD
added 2024/01/05 12:0 a.m.3 views

Lotos WebServer Security Vulnerability

Lotos WebServer is a small but high-performance HTTP WebServer that follows the Reactor model and uses non-blocking IO and IO multiplexing epoll ET to handle concurrency. A security vulnerability exists in Lotos WebServer version 0.1.1 and earlier, which stems from improper realloc handling, the...

9.8CVSS6.8AI score0.00729EPSS
Exploits1References2
CVE
CVE
added 2024/01/05 12:0 a.m.47 views

CVE-2024-22088

CVE-2024-22088 affects Lotos WebServer up to version 0.1.1. The issue is a use-after-free in buffer_avail() in buffer.h triggered by handling a long URI, caused by mishandling of realloc. Documentation across multiple sources (NVD/Red Hat OSV/CNNVD/CVE records) confirms the same description, with...

9.8CVSS9.3AI score0.00729EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/05 12:0 a.m.12 views

CVE-2024-22088

Lotos WebServer through 0.1.1 commit 3eb36cc has a use-after-free in bufferavail at buffer.h via a long URI, because realloc is mishandled...

9.4AI score0.00729EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/01/05 12:0 a.m.3 views

PT-2024-19199 · Unknown · Lotos Webserver

Name of the Vulnerable Software and Affected Versions: Lotos WebServer versions through 0.1.1 Description: The issue is related to a use-after-free in the buffer avail function at buffer.h, which occurs when handling a long URI. This is due to the mishandling of realloc. Recommendations: For...

9.8CVSS7.2AI score0.00729EPSS
Exploits1References7
Cvelist
Cvelist
added 2024/01/05 12:0 a.m.17 views

CVE-2024-22088

Lotos WebServer through 0.1.1 commit 3eb36cc has a use-after-free in bufferavail at buffer.h via a long URI, because realloc is mishandled...

9.7AI score0.00729EPSS
Exploits1References1
Rows per page
Query Builder