Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:35984
HistoryJun 14, 2022 - 4:42 p.m.

Buffer Overflow

2022-06-1416:42:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21
apache http server
buffer overflow
vulnerability
lack of sanitization
r:wsread()

EPSS

0.003

Percentile

70.6%

Apache HTTP Server is vulnerable to buffer overflow. The vulnerability exists due to a lack of sanitization of the return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.