Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2018-12684

Published: 22/06/2018 Updated: 10/08/2018
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8
VMScore: 516
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:P
Subscribe to Civetweb Project

Vulnerability Summary

Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb up to and including 1.10 allows malicious users to cause a Denial of Service or Information Disclosure via a crafted SSI file.

Vulnerable Product Search on Vulmon Subscribe to Product

civetweb project civetweb

Vendor Advisories

Red Hat: CVE-2018-12684
Out-of-bounds Read in the send_ssi_file function in civetwebc in CivetWeb through 110 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file ...

References

CWE-200CWE-125https://github.com/civetweb/civetweb/issues/633https://github.com/civetweb/civetweb/commit/8fd069f6dedb064339f1091069ac96f3f8bdb552https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2018-12684
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook