Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (latest) allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of service or arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
Tue, 02 Sep 2025 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Civetweb Project
Civetweb Project civetweb |
|
Vendors & Products |
Civetweb Project
Civetweb Project civetweb |
Fri, 29 Aug 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-121 | |
Metrics |
cvssV3_1
|
Fri, 29 Aug 2025 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (latest) allows a remote attacker to achieve remote code execution via a crafted HTTP request. This vulnerability is triggered during request processing and may allow an attacker to corrupt heap memory, potentially leading to denial of service or arbitrary code execution. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-08-29T17:05:30.204Z
Reserved: 2025-08-16T00:00:00.000Z
Link: CVE-2025-55763

Updated: 2025-08-29T17:05:22.646Z

Status : Awaiting Analysis
Published: 2025-08-29T17:15:35.790
Modified: 2025-09-02T15:55:35.520
Link: CVE-2025-55763

No data.

Updated: 2025-09-02T15:23:32Z