Embedthis Appweb 7.0.2

CPE Details

Embedthis Appweb 7.0.2
7.0.2
2019-06-11
15h35 +00:00
2019-06-11
15h35 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:embedthis:appweb:7.0.2:*:*:*:*:*:*:*

Informations

Vendor

embedthis

Product

appweb

Version

7.0.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-15689 2020-07-13 11h48 +00:00 Appweb before 7.2.2 and 8.x before 8.1.0, when built with CGI support, mishandles an HTTP request with a Range header that lacks an exact range. This may result in a NULL pointer dereference and cause a denial of service.
7.5
High
CVE-2018-8715 2018-03-14 19h00 +00:00 The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c. With a forged HTTP request, it is possible to bypass authentication for the form and digest login types.
8.1
High