Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
uriparser project uriparser vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-46141
An issue exists in uriparser prior to 0.9.6. It performs invalid free operations in uriFreeUriMembers and uriMakeOwner.
Uriparser Project Uriparser
Fedoraproject Fedora 34
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Opensuse Backports Sle-15
Opensuse Factory -
Opensuse Leap 15.3
5.5
CVSSv3
CVE-2021-46142
An issue exists in uriparser prior to 0.9.6. It performs invalid free operations in uriNormalizeSyntax.
Uriparser Project Uriparser
Fedoraproject Fedora 34
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Opensuse Backports Sle-15
Opensuse Factory -
Opensuse Leap 15.3
9.8
CVSSv3
CVE-2018-20721
URI_FUNC() in UriParse.c in uriparser prior to 0.9.1 has an out-of-bounds read (in uriParse*Ex* functions) for an incomplete URI with an IPv6 address containing an embedded IPv4 address, such as a "//[::44.1" address.
Uriparser Project Uriparser
Debian Debian Linux 8.0
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2018-19198
An issue exists in uriparser prior to 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain contexts.
Uriparser Project Uriparser
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-19200
An issue exists in uriparser prior to 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function.
Uriparser Project Uriparser
Debian Debian Linux
9.8
CVSSv3
CVE-2018-19199
An issue exists in uriparser prior to 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication.
Uriparser Project Uriparser
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started