CVE-2013-7038
published 2013-12-13CVE-2013-7038: The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash)…
medium6.4CVSS 3.1
AVNACLAuNCPINAP
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an out-of-bounds read.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libmicrohttpd | < libmicrohttpd 0.9.32-1 (bookworm) | libmicrohttpd 0.9.32-1 (bookworm) |
| gnu | libmicrohttpd | <= 0.9.31 | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | — | — |
| gnu | libmicrohttpd | >= 0 < 0.9.32-1 | 0.9.32-1 |
| gnu | libmicrohttpd | >= 0 < 0.9.32-1 | 0.9.32-1 |
| gnu | libmicrohttpd | >= 0 < 0.9.32-1 | 0.9.32-1 |
| gnu | libmicrohttpd | >= 0 < 0.9.32-1 | 0.9.32-1 |
CVSS provenance
nvd6.4MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:P
osv6.4MEDIUM