Every CVE whose affected-product data names Hongliuliao Ehttp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-52266 — CVSS 7.5 (high): ehttp 1.0.6 before 17405b9 has an epoll_socket.cpp read_func use-after-free. An attacker can make many connections over a short time to…
CVE-2023-52267 — CVSS 7.5 (high): ehttp 1.0.6 before 17405b9 has a simple_log.cpp _log out-of-bounds-read during error logging for long strings.