Skip to main content

Libhtp

4 CVEs product

Monthly

CVE-2024-28871 HIGH PATCH This Week

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Libhtp
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%
CVE-2024-23837 HIGH POC PATCH This Week

LibHTP is a security-aware parser for the HTTP protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Libhtp Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
1.2%
CVE-2019-17420 MEDIUM PATCH This Month

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Suricata Libhtp
NVD GitHub
CVSS 3.1
5.3
EPSS
1.4%
CVE-2015-0928 HIGH This Week

libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Libhtp
NVD
CVSS 3.1
7.5
EPSS
0.8%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Libhtp
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

LibHTP is a security-aware parser for the HTTP protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Libhtp Fedora
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Suricata Libhtp
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Libhtp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy