Debian Mini-Httpd vulnerabilities
2 known vulnerabilities affecting debian/mini-httpd.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2018-18778P2MEDIUMCVSS 6.5PoCfixed in mini-httpd 1.30-0.1 (bookworm)2018
CVE-2018-18778 [MEDIUM] CVE-2018-18778: mini-httpd - ACME mini_httpd before 1.30 lets remote users read arbitrary files.
ACME mini_httpd before 1.30 lets remote users read arbitrary files.
Scope: local
bookworm: resolved (fixed in 1.30-0.1)
bullseye: resolved (fixed in 1.30-0.1)
forky: resolved (fixed in 1.30-0.1)
sid: resolved (fixed in 1.30-0.1)
trixie: resolved (fixed in 1.30-0.1)
debian
CVE-2015-1548P4MEDIUMCVSS 5.0fixed in mini-httpd 1.21-1 (bookworm)2015
CVE-2015-1548 [MEDIUM] CVE-2015-1548: mini-httpd - mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive informat...
mini_httpd 1.21 and earlier allows remote attackers to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size calculation and an out-of-bounds read.
Scope: local
bookworm: resolved (fixed in 1.21-1)
bullseye: resolved (fixed in 1.21-1)
forky: resolved (fixed in 1.21-1)
sid: resol
debian