Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
CrowcppCrow*

3 matches found

CVE
CVEadded 2022/08/04 6:39 p.m.64 views

CVE-2022-34970

The CVE-2022-34970 entry affects Crow v1.0+4 and is caused by a heap-based overflow in the qs_parse function of query_string.h. On successful exploitation, remote code execution in the context of the vulnerable Crow service is possible. The Red Hat and OSV/NVD entries corroborate this description...

9.8CVSS9.7AI score0.23988EPSS
CVE
CVEadded 2022/01/13 2:10 p.m.50 views

CVE-2021-23824

The CVE-2021-23824 entry concerns Crow (C/C++ micro-framework). Concrete details across connected sources show thatCrow before 0.3+4 is vulnerable when rendering templates that interpolate attributes without quotes; an attacker can inject attributes to manipulate input, enabling Cross‑site Script...

6.5CVSS6AI score0.00307EPSS
CVE
CVEadded 2022/01/13 2:10 p.m.39 views

CVE-2021-23514

CVE-2021-23514 affects Crow before 0.3+4. A path traversal flaw allows an attacker to traverse directories and fetch arbitrary files from the server via supported endpoints. The vulnerability is described across multiple sources (e.g., NVD/CVE entry; CNVD/CNNVD; Snyk references) as a directory tr...

7.5CVSS7AI score0.00778EPSS