N/A

Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (latest) allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of service or arbitrary code execution.

N/A

N/A

CivetWeb 安全漏洞

CivetWeb是开源（Civetweb）的一个易于使用、功能强大、可嵌入 C/C++ 的 Web 服务器，具有可选的 CGI、SSL 和 Lua 支持。 CivetWeb 1.14至1.16版本存在安全漏洞，该漏洞源于URI解析器存在缓冲区溢出，可能导致远程代码执行。

N/A

N/A