4 matches found
openSUSE 16 Security Update : cpp-httplib (openSUSE-SU-2026:20056-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20056-1 advisory. - CVE-2025-66570: IP spoofing, log poisoning, and authorization bypass via header shadowing due to acceptance and parsing of client-controlled...
CVE-2025-66570
creationtimestamp| type| source ---|---|--- 2025-12-05 21:38:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7bh463n7n2w 2025-12-06 01:33:59+00:00| seen| https://infosec.exchange/users/offseq/statuses/115670046304885242 2025-12-06 01:34:00+00:00| seen|...
DEBIAN-CVE-2025-66570
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can inject headers named REMOTEADDR, REMOTEPORT,...
CVE-2025-66570
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.27.0, a vulnerability allows attacker-controlled HTTP headers to influence server-visible metadata, logging, and authorization decisions. An attacker can inject headers named REMOTEADDR, REMOTEPORT,...