PT-2022-10223 · Unknown · Appweb Community Edition

Awxylitol

Published

2022-06-01

Updated

2022-06-09

CVE-2021-33254

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Appweb Community Edition version 8.2.1

Description An issue was discovered in the src/http/httpLib.c file, allowing attackers to cause a denial of service via the stream parameter to the parseUri function.

Recommendations For Appweb Community Edition version 8.2.1, consider disabling the parseUri function until a patch is available to prevent potential denial of service attacks.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2021-33254

Affected Products

Appweb Community Edition

PT-2022-10223 · Unknown · Appweb Community Edition

CVE-2021-33254

Weakness Enumeration

Related Identifiers

Affected Products

References · 3