Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value.
6.6AI Score
0.032EPSS
Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filename.
7.5AI Score
0.026EPSS
cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.
6.6AI Score
0.013EPSS
Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.
7.9AI Score
0.144EPSS
Savant Web Server stores user credentials in plaintext in the Savant\Users registry key, which allows local users to gain privileges.
6.9AI Score
0.0004EPSS