Vulnerabilities (CVE)

Filtered by vendor Nazgul Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-48253 1 Nazgul 1 Nostromo 2024-11-21 N/A 9.8 CRITICAL
nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to execute arbitrary commands on the remote server. The vulnerability occurs when the homedirs option is used.
CVE-2019-16279 1 Nazgul 1 Nostromo Nhttpd 2024-11-21 5.0 MEDIUM 7.5 HIGH
A memory error in the function SSL_accept in nostromo nhttpd through 1.9.6 allows an attacker to trigger a denial of service via a crafted HTTP request.
CVE-2019-16278 1 Nazgul 1 Nostromo Nhttpd 2024-11-21 7.5 HIGH 9.8 CRITICAL
Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request.
CVE-2011-0751 1 Nazgul 1 Nostromo 2024-11-21 7.5 HIGH N/A
Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.