Lucene search
Veracode Vulnerability DatabaseVERACODE:37103HistorySep 17, 2022 - 5:55 p.m.
Denial Of Service (DoS)
2022-09-1717:55:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
denial of service
lighttpd
vulnerability
http request
null pointer dereference
crash
system
EPSS
0.002
Percentile
57.7%
lighttpd is vulnerable to denial of service. The vulnerability exists due to a lack of initialization when an invalide HTTP request (websocket handshake) leading to a null pointer dereference allowing an attacker to crash the system.
Related
debian
debian
[SECURITY] [DLA 3133-1] lighttpd security update
2022-10-03 07:47:47
[SECURITY] [DSA 5243-1] lighttpd security update
2022-09-28 16:05:19
nessus
nessus
Amazon Linux AMI : lighttpd (ALAS-2023-1705)
2023-03-22 00:00:00
openSUSE 15 Security Update : lighttpd (openSUSE-SU-2022:10132-1)
2022-09-30 00:00:00
Debian DLA-3133-1 : lighttpd - LTS security update
2022-10-05 00:00:00
openvas
openvas
Lighttpd < 1.4.66 DoS Vulnerability
2022-09-13 00:00:00
openSUSE: Security Advisory for lighttpd (openSUSE-SU-2022:10132-1)
2024-03-04 00:00:00
Debian: Security Advisory (DLA-3133-1)
2022-10-05 00:00:00
prion
prion
Null pointer dereference
2022-09-12 15:15:00
ubuntucve
ubuntucve
CVE-2022-37797
2022-09-12 00:00:00
debiancve
debiancve
CVE-2022-37797
2022-09-12 15:15:08
suse
suse
Security update for lighttpd (moderate)
2022-09-29 00:00:00
cve
cve
CVE-2022-37797
2022-09-12 15:15:08
osv
osv
lighttpd-1.4.66-1.1 on GA media
2024-06-15 00:00:00
lighttpd - security update
2022-10-03 00:00:00
CVE-2022-37797
2022-09-12 15:15:08
redos
redos
ROS-20221004-02
2022-10-04 00:00:00
amazon
amazon
Important: lighttpd
2023-03-17 15:53:00
cvelist
cvelist
CVE-2022-37797
2022-09-12 00:00:00
nvd
nvd
CVE-2022-37797
2022-09-12 15:15:08
mageia
mageia
Updated lighttpd packages fix security vulnerability
2022-10-13 23:05:19
gentoo
gentoo
Lighttpd: Denial of Service
2022-10-31 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00