Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Lotos_webserver
(Chendotjs)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-01-05 | CVE-2024-22088 | Lotos WebServer through 0.1.1 (commit 3eb36cc) has a use-after-free in buffer_avail() at buffer.h via a long URI, because realloc is mishandled. | Lotos_webserver | 9.8 | ||
| 2024-02-05 | CVE-2024-24263 | Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the response_append_status_line function at /lotos/src/response.c. | Lotos_webserver | 7.5 |