Every CVE whose affected-product data names Ritlabs Tinyweb, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2026-22781 — CVSS 9.8 (critical): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. TinyWeb HTTP Server before version 1.98 is vulnerable to OS command…
CVE-2026-27613 — CVSS 9.8 (critical): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. A vulnerability in versions prior to 2.01 allows unauthenticated remote…
CVE-2026-28497 — CVSS 9.1 (critical): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Prior to version 2.03, an integer overflow vulnerability in the…
CVE-2024-34199 — CVSS 8.6 (high): TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service (Buffer Overflow) when sending excessively…
CVE-2026-29046 — CVSS 8.2 (high): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Prior to version 2.04, TinyWeb accepts request header values and later…
CVE-2026-27633 — CVSS 7.5 (high): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 have a Denial of Service (DoS)…
CVE-2026-27630 — CVSS 7.5 (high): TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 are vulnerable to a Denial of Service…
CVE-2024-5193 — CVSS 5.3 (medium): A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request…