Skip to main content

Cherokee

2 CVEs product

Monthly

CVE-2020-12845 HIGH POC This Week

Cherokee 0.4.27 to 1.2.104 is affected by a denial of service due to a NULL pointer dereferences. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Cherokee
NVD GitHub
CVSS 3.1
7.5
EPSS
3.2%
CVE-2014-4668 MEDIUM This Month

The cherokee_validator_ldap_check function in validator_ldap.c in Cherokee 1.2.103 and earlier, when LDAP is used, does not properly consider unauthenticated-bind semantics, which allows remote. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Fedora Mageia Cherokee
NVD GitHub
CVSS 2.0
6.8
EPSS
0.6%
EPSS 3% CVSS 7.5
HIGH POC This Week

Cherokee 0.4.27 to 1.2.104 is affected by a denial of service due to a NULL pointer dereferences. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Cherokee
NVD GitHub
EPSS 1% CVSS 6.8
MEDIUM This Month

The cherokee_validator_ldap_check function in validator_ldap.c in Cherokee 1.2.103 and earlier, when LDAP is used, does not properly consider unauthenticated-bind semantics, which allows remote. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Fedora Mageia +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy