Appweb prior to 7.2.2 and 8.x prior to 8.1.0, when built with CGI support, mishandles an HTTP request with a Range header that lacks an exact range. This may result in a NULL pointer dereference and cause a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
embedthis appweb |