Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 5:51 p.m.13 views

CVE-2019-5096

An exploitable code execution vulnerability exists in the processing of multi-part/form-data requests within the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to a use-after-free condition during the processing of this reques...

9.8CVSS7.6AI score0.66982EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2023/03/28 12:0 a.m.15 views

Rockwell Automation products using GoAhead Web Server Use After Free (CVE-2019-5096)

An exploitable code execution vulnerability exists in the processing of multi-part/form-data requests within the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to a use-after-free condition during the processing of this reques...

9.8CVSS7.5AI score0.66982EPSS
Exploits2References5
ICS
ICS
added 2023/01/26 12:0 a.m.50 views

Rockwell Automation products using GoAhead Web Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Products using GoAhead Web Server Vulnerabilities: Infinite Loop, Use after Free 2. RISK EVALUATION Successful exploitation of these vulnerabilities could have a high...

9.8CVSS8.6AI score0.66982EPSS
Exploits3References4
Check Point Advisories
Check Point Advisories
added 2020/03/01 12:0 a.m.7 views

Embedthis Goahead Use-After-Free (CVE-2019-5096)

A use-after-free vulnerability exists in Embedthis Goahead. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS4.8AI score0.66982EPSS
Exploits2
Circl
Circl
added 2019/12/04 1:56 p.m.8 views

CVE-2019-5096

creationtimestamp| type| source ---|---|--- 2019-12-04 13:56:24+00:00| seen| https://t.me/ctinow/18282 2023-09-28 18:27:35+00:00| seen| https://t.me/thehackernews/548 2024-03-07 09:36:57+00:00| seen| https://t.me/ctinow/202227 2024-10-08 20:45:42+00:00| published-proof-of-concept|...

9.8CVSS8.9AI score0.66982EPSS
Exploits2References4
The Hacker News
The Hacker News
added 2019/12/04 12:48 p.m.72 views

Critical Flaw in GoAhead Web Server Could Affect Wide Range of IoT Devices

Cybersecurity researchers today uncovered details of two new vulnerabilities in the GoAhead web server software, a tiny application widely embedded in hundreds of millions of Internet-connected smart devices. One of the two vulnerabilities, assigned as CVE-2019-5096, is a critical code execution...

9.8CVSS9.6AI score0.66982EPSS
Exploits3
The Hacker News
The Hacker News
added 2019/12/04 12:48 p.m.6 views

Critical Flaw in GoAhead Web Server Could Affect Wide Range of IoT Devices

Cybersecurity researchers today uncovered details of two new vulnerabilities in the GoAhead web server software, a tiny application widely embedded in hundreds of millions of Internet-connected smart devices. One of the two vulnerabilities, assigned as CVE-2019-5096, is a critical code execution...

9.8CVSS7.5AI score0.66982EPSS
Exploits3
CVE
CVE
added 2019/12/03 9:52 p.m.125 views

CVE-2019-5096

CVE-2019-5096 is a use-after-free vulnerability in the GoAhead web server (Embedthis/Rockwell context) triggered by processing multipart/form-data. A specially crafted HTTP request (unauthenticated via GET/POST) can corrupt heap and lead to remote code execution. Affected GoAhead versions include...

9.8CVSS9.6AI score0.66982EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder