Uwsgi

uwsgi

Vendor: Unbit • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-27522 3Apache DebianUnbit 3Debian Linux Http ServerUwsgi May 1, 2025 Mar 7, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the...Show more HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.Show less
CVE-2018-7490 2Debian Unbit 2Debian Linux Uwsgi Nov 21, 2024 Feb 26, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.
CVE-2018-6758 1Unbit 1Uwsgi Nov 21, 2024 Feb 6, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.