Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:5 a.m.7 views

CVE-2019-5097

A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to an infinite loop in the process. The request can be unauthenticated in the fo...

7.5CVSS6.9AI score0.45063EPSS
Exploits1References1
Circl
Circl
added 2023/09/28 6:27 p.m.9 views

CVE-2019-5097

creationtimestamp| type| source ---|---|--- 2023-09-28 18:27:35+00:00| seen| https://t.me/thehackernews/548 2024-03-07 09:36:57+00:00| seen| https://t.me/ctinow/202228 2024-11-14 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-16...

7.5CVSS6.5AI score0.45063EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/03/28 12:0 a.m.22 views

Rockwell Automation products using GoAhead Web Server Loop with Unreachable Exit Condition (CVE-2019-5097)

A denial-of-service vulnerability exists in the processing of multi- part/form-data requests in the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to an infinite loop in the process. The request can be unauthenticated in the...

7.5CVSS7AI score0.45063EPSS
Exploits1References5
ICS
ICS
added 2023/01/26 12:0 a.m.50 views

Rockwell Automation products using GoAhead Web Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Products using GoAhead Web Server Vulnerabilities: Infinite Loop, Use after Free 2. RISK EVALUATION Successful exploitation of these vulnerabilities could have a high...

9.8CVSS8.6AI score0.66982EPSS
Exploits3References4
The Hacker News
The Hacker News
added 2019/12/04 12:48 p.m.6 views

Critical Flaw in GoAhead Web Server Could Affect Wide Range of IoT Devices

Cybersecurity researchers today uncovered details of two new vulnerabilities in the GoAhead web server software, a tiny application widely embedded in hundreds of millions of Internet-connected smart devices. One of the two vulnerabilities, assigned as CVE-2019-5096, is a critical code execution...

9.8CVSS7.5AI score0.66982EPSS
Exploits3
OSV
OSV
added 2019/12/03 10:15 p.m.5 views

CVE-2019-5097

A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to an infinite loop in the process. The request can be unauthenticated in the fo...

7.5CVSS6.6AI score0.45063EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/12/03 9:49 p.m.29 views

CVE-2019-5097

A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP request can lead to an infinite loop in the process. The request can be unauthenticated in the fo...

5.3CVSS7.5AI score0.45063EPSS
Exploits1References1
CVE
CVE
added 2019/12/03 9:49 p.m.92 views

CVE-2019-5097

The CVE-2019-5097 entry documents a denial-of-service in the GoAhead web server’s handling of multipart/form-data. A specially crafted, unauthenticated HTTP request (GET or POST), targeting GoAhead versions v5.0.1, v4.1.1, and v3.6.5, can cause an infinite loop in the process, potentially impacti...

7.5CVSS7.5AI score0.45063EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder