5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
High
0.039 Low
EPSS
Percentile
92.0%
libmicrohttpd.so is vulnerable to a Stack-based Buffer Overflow. The vulnerability is due to boundary error when handling overly long authentication headers inthe MHD_digest_auth_check
function. This flaw allows remote attackers to cause a denial of service or possibly execute arbitrary code via a long URI in the authentication header.
CPE | Name | Operator | Version |
---|---|---|---|
libmicrohttpd.so | le | 10.17.0 | |
libmicrohttpd.so | le | 10.17.0 |