Vulnerabilities
Vulnerable Software
Litespeedtech:  >> Openlitespeed  Security Vulnerabilities
The server in LiteSpeed OpenLiteSpeed before 1.5.0 RC6 allows local users to cause a denial of service (buffer overflow) or possibly have unspecified other impact by creating a symlink through which the openlitespeed program can be invoked with a long command name (involving ../ characters), which is mishandled in the LshttpdMain::getServerRootFromExecutablePath function.
CVSS Score
6.7
EPSS Score
0.004
Published
2018-12-03
Use-after-free vulnerability in Open Litespeed before 1.3.10.
CVSS Score
7.5
EPSS Score
0.011
Published
2017-09-20


Contact Us

Shodan ® - All rights reserved