0.001 Low
EPSS
Percentile
29.4%
Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file.
bugzilla.redhat.com/show_bug.cgi?id=1595529