3 matches found
CVE-2024-22086
handlerequest in http.c in cherry through 4b877df has an sscanf stack-based buffer overflow via a long URI, leading to remote code execution...
CVE-2024-22086
CVE-2024-22086 affects the Cherry HTTP server. The vulnerability is a stack-based buffer overflow in the handle_request() function in http.c caused by using sscanf with a long URI, enabling remote code execution. Affected versions are Cherry up to 4b877df; explicit fixes are not documented in the...
CVE-2024-22086
handlerequest in http.c in cherry through 4b877df has an sscanf stack-based buffer overflow via a long URI, leading to remote code execution...