embedthis CVE Vulnerabilities & CVE List (23)

Products (CPE): — CVEs: 23

embedthis vulnerability overview

Aggregates CVE and security vulnerability intelligence across all embedthis-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues involve various input-handling and memory-safety problems that may affect software stability and security.

Vulnerability distribution trend (last 24 months)

Showing 2123 of 23 CVEs
«« First « Prev Page 2 / 2 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2017-5674 A vulnerability in a custom-built GoAhead web server used on Foscam, Vstarcam, and multiple white-label IP camera models allows an attacker to craft a malformed HTTP ("GET system.ini HTTP/1.1\n\n" - note the lack of "/" in the path field of the request) request that will disclose the configuration file with the login password. [email protected] 9.8 21.57% 2017-03-13 2026-06-16
CVE-2014-9708 Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,". [email protected] 5.0 56.43% 2015-03-31 2026-06-16
CVE-2014-9707 EmbedThis GoAhead 3.0.0 through 3.4.1 does not properly handle path segments starting with a . (dot), which allows remote attackers to conduct directory traversal attacks, cause a denial of service (heap-based buffer overflow and crash), or possibly execute arbitrary code via a crafted URI. [email protected] 7.5 28.42% 2015-03-31 2026-06-16
«« First « Prev Page 2 / 2 Next »
cvelogic Threat Intelligence