Lucene search
+L

1405 matches found

OSV
OSV
added 2026/02/23 9:19 p.m.15 views

CVE-2025-70327

TOTOLINK X5000R v9.1.0cu2415B20250515 contains an argument injection vulnerability in the setDiagnosisCfg handler of the /usr/sbin/lighttpd executable. The ip parameter is retrieved via websGetVar and passed to a ping command through CsteSystem without validating if the input starts with a hyphen...

9.8CVSS6AI score0.00693EPSS
Exploits1References2
OSV
OSV
added 2026/02/23 8:28 p.m.10 views

CVE-2025-70329

TOTOLink X5000R v9.1.0cu2415B20250515 contains an OS command injection vulnerability in the setIptvCfg handler of the /usr/sbin/lighttpd executable. The vlanVidLan1 and other vlanVidLanX parameters are retrieved via UciGetStr and passed to the CsteSystem function without adequate validation or...

8CVSS6.1AI score0.03183EPSS
Exploits1References2
NVD
NVD
added 2026/02/23 8:28 p.m.15 views

CVE-2025-70329

TOTOLink X5000R v9.1.0cu2415B20250515 contains an OS command injection vulnerability in the setIptvCfg handler of the /usr/sbin/lighttpd executable. The vlanVidLan1 and other vlanVidLanX parameters are retrieved via UciGetStr and passed to the CsteSystem function without adequate validation or...

8CVSS0.03183EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/02/23 12:0 a.m.15 views

PT-2026-21543

Name of the Vulnerable Software and Affected Versions TOTOLink X5000R version 9.1.0cu 2415 B20250515 Description The TOTOLink X5000R router firmware contains an OS command injection issue in the setIptvCfg handler of the /usr/sbin/lighttpd executable. The vlanVidLan1 and other vlanVidLanX...

8CVSS5.8AI score0.03183EPSS
Exploits1References8
Cvelist
Cvelist
added 2026/02/23 12:0 a.m.35 views

CVE-2025-70327

TOTOLINK X5000R v9.1.0cu2415B20250515 contains an argument injection vulnerability in the setDiagnosisCfg handler of the /usr/sbin/lighttpd executable. The ip parameter is retrieved via websGetVar and passed to a ping command through CsteSystem without validating if the input starts with a hyphen...

0.00693EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/23 12:0 a.m.5 views

CVE-2025-70329

TOTOLink X5000R v9.1.0cu2415B20250515 contains an OS command injection vulnerability in the setIptvCfg handler of the /usr/sbin/lighttpd executable. The vlanVidLan1 and other vlanVidLanX parameters are retrieved via UciGetStr and passed to the CsteSystem function without adequate validation or...

6AI score0.03183EPSS
Exploits1References2
CVE
CVE
added 2026/02/23 12:0 a.m.20 views

CVE-2025-70329

TOTOLink X5000R firmware version 9.1.0cu_2415_B20250515 contains an OS command injection in the setIptvCfg handler of /usr/sbin/lighttpd. The vlanVidLan1 (and other vlanVidLanX) values are retrieved via Uci_Get_Str and passed to CsteSystem without proper validation, enabling an authenticated atta...

8CVSS6AI score0.03183EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/02/23 12:0 a.m.20 views

CVE-2025-70327

Affected product: TOTOLINK X5000R (v9.1.0cu_2415_B20250515). Vulnerability: In the /usr/sbin/lighttpd executable, the setDiagnosisCfg handler uses the ip parameter retrieved via websGetVar and passes it to a ping command through CsteSystem without validating inputs starting with a hyphen, enablin...

9.8CVSS5.7AI score0.00693EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2026/02/09 8:16 a.m.17 views

CVE-2026-22903

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections...

9.8CVSS0.00667EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/09 7:40 a.m.3 views

CVE-2026-22904 Stack Overflow via Oversized Cookie Fields in lighttpd

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS6.2AI score0.00541EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/09 7:40 a.m.30 views

CVE-2026-22904 Stack Overflow via Oversized Cookie Fields in lighttpd

Improper length handling when parsing multiple cookie fields including TRACKID allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow, resulting in a denial‑of‑service condition and possible remote code execution...

9.8CVSS0.00541EPSS
Exploits0References1
CVE
CVE
added 2026/02/09 7:40 a.m.26 views

CVE-2026-22904

CVE-2026-22904 affects lighttpd, where improper length handling when parsing multiple cookie fields (including TRACKID) allows an unauthenticated remote attacker to send oversized cookie values and trigger a stack buffer overflow. This can result in a denial-of-service condition and potentially r...

9.8CVSS6.2AI score0.00541EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/09 7:39 a.m.37 views

CVE-2026-22903 Stack Overflow via SESSIONID Cookie in lighttpd

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections...

9.8CVSS0.00667EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/09 7:39 a.m.3 views

CVE-2026-22903

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections...

9.8CVSS6.7AI score0.00667EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2026/02/09 7:39 a.m.47 views

CVE-2026-22903

Affects lighttpd-based server variants (modified lighttpd) where an unauthenticated remote attacker can send a crafted HTTP request with an overly long SESSIONID cookie. The underlying issue is a stack buffer overflow, triggered by the oversized cookie, leading to server crashes and potentially r...

9.8CVSS6.7AI score0.00667EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.14 views

PT-2026-7081

Name of the Vulnerable Software and Affected Versions lighttpd affected versions not specified Description An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the lighttpd server, potentially...

9.8CVSS6.6AI score0.00667EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2026/01/27 12:0 a.m.202 views

📄 Lighttpd 1.4.66 FastCGI Resource Exhaustion

Proof of concept exploit for a resource exhaustion vulnerability that exists in lighttpd versions 1.4.56 through 1.4.66 affecting FastCGI and other gateway backends. When processing HTTP/1.1 requests using chunked transfer encoding with request-body streaming enabled, an anomalous client disconne...

7.5CVSS5.9AI score0.02792EPSS
Exploits4
Zero Science Lab
Zero Science Lab
added 2026/01/23 12:0 a.m.235 views

Lighttpd 1.4.56 - 1.4.66 Resource Leak Denial of Service PoC

Summary lighttpd pronounced /lighty/ is a secure, fast, compliant, and very flexible web server that has been optimized for high-performance environments. lighttpd uses memory and CPU efficiently and has lower resource use than other popular web servers. Its advanced feature-set FastCGI, CGI, Aut...

7.5CVSS7AI score0.02792EPSS
Exploits4
Packet Storm
Packet Storm
added 2026/01/23 12:0 a.m.243 views

📄 Lighttpd 1.4.66 Resource Leak Denial of Service

Lighttpd versions 1.4.56 through 1.4.66 has a resource exhaustion vulnerability affecting gateway backends such as FastCGI. When handling an HTTP/1.1 request with chunked transfer encoding and request-body streaming enabled, lighttpd mishandles an anomalous client disconnect RDHUP / half-closed T...

7.5CVSS5.6AI score0.02792EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2026/01/09 12:24 p.m.10 views

CVE-2018-14067

Green Packet WiMax DV-360 2.10.14-g1.0.6.1 devices allow Command Injection, with unauthenticated remote command execution, via a crafted payload to the HTTPS port, because lighttpd listens on all network interfaces including the external Internet by default. NOTE: this may overlap CVE-2017-9980...

10CVSS7.3AI score0.07016EPSS
Exploits2References1
Rows per page
Query Builder