5 matches found
Cross site request forgery (csrf)
A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2020-13583
CVE-2020-13583 affects Micrium uC-HTTP 3.01.00. TALOS details describe a denial-of-service caused by a NULL pointer dereference in the uC-HTTP server when handling multipart form data; specifically, if FormCfgPtr is NULL or FormBoundaryPtr is not allocated, HTTPsReq_HdrParse can dereference a NUL...
CVE-2020-13582
A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
Cross site request forgery (csrf)
A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2020-13582
Micrium uC-HTTP 3.01.00’s HTTP Server contains a denial-of-service vulnerability due to an unchecked return value in the header-parsing path. Specifically, in the boundary parsing of multipart forms, Str_Char_N may return NULL, and the code proceeds to dereference it, causing a crash (segmentatio...