CVE-2024-24263

Name of the Vulnerable Software and Affected Versions Lotos WebServer version 0.1.1

Description A Use-After-Free (UAF) issue was discovered in the response append status line function at /lotos/src/response.c. This issue can be exploited, but details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided. The response append status line function is the vulnerable component.

Recommendations For Lotos WebServer version 0.1.1, as a temporary workaround, consider disabling the response append status line function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.