Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/06/15 8:9 p.m.13 views

aiohttp: Unread Compressed Request Bodies Bypass client_max_size During Cleanup

Summary During cleanup it is possible for a compressed request body to be decompressed into memory in one chunk. Impact An attacker may be able to send a compressed payload in specific situations that could be decompressed into memory, potentially leading to DoS a zip bomb edge case. Workaround...

8.7CVSS5.2AI score0.00279EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2026/01/12 7:16 p.m.4 views

CVE-2026-22776

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of Service DoS vulnerability exists in cpp-httplib due to the unsafe handling of compressed HTTP request bodies Content-Encoding: gzip, br, etc.. The library validates the...

8.7CVSS5.7AI score0.00353EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/12 6:18 p.m.6 views

EUVD-2026-2006

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of Service DoS vulnerability exists in cpp-httplib due to the unsafe handling of compressed HTTP request bodies Content-Encoding: gzip, br, etc.. The library validates the...

8.7CVSS6.2AI score0.00353EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.8 views

cpp-httplib 安全漏洞

cpp-httplib is an HTTP/HTTPS server and client library written in C++ by the individual developer yhirose. A security vulnerability exists in cpp-httplib versions prior to 0.30.1, which stems from insecure handling of compressed HTTP request bodies and could lead to a denial-of-service attack...

8.7CVSS6.4AI score0.00353EPSS
Exploits1References2
Rows per page
Query Builder