Skip to main content
CVE-2022-30780 HIGH POC PATCH THREAT This Week

Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU consumption from stuck connections) because connection_read_header_more in connections.c has a typo that. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Lighttpd
NVD GitHub
CVSS 3.1
7.5
EPSS
56.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy