← voltar
CVE-2021-40540

CVE-2021-40540

EPSS 2.5%
ulfius_uri_logger in Ulfius HTTP Framework before 2.7.4 omits con_info initialization and a con_info->request NULL check for certain malformed HTTP requests.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/164152/Ulfius-Web-Framework-Remote-Memory-Corruption.htmlhttps://github.com/babelouest/ulfius/commit/c83f564c184a27145e07c274b305cabe943bbfaahttps://github.com/babelouest/ulfius/compare/v2.7.3...v2.7.4