Sthttpd Project Sthttpd — known CVE vulnerabilities
Every CVE whose affected-product data names Sthttpd Project Sthttpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-10671 — CVSS 7.8 (high): Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of…
CVE-2021-26843 — CVSS 7.5 (high): An issue was discovered in sthttpd through 2.27.1. On systems where the strcpy function is implemented with memcpy, the de_dotdot function…