CVE-2024-3184

Name of the Vulnerable Software and Affected Versions GoAhead Web Server versions up to 6.0.0

Description Multiple NULL Pointer Dereference vulnerabilities were found in GoAhead Web Server when compiled with the ME GOAHEAD REPLACE MALLOC flag. Without a memory notifier for allocation failures, remote attackers can exploit these vulnerabilities by sending malicious requests, leading to a crash and Denial of Service (DoS).

Recommendations For GoAhead Web Server versions up to 6.0.0, consider disabling the ME GOAHEAD REPLACE MALLOC flag as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.