Vendor coverage

unbit vulnerabilities

Track published CVEs, severity trends, and remediation context for unbit products.

RSS

Total vulnerabilities

Critical issues

Average CVSS score

8.3

Search results

Filtered vulnerability results

Showing 1-3 of 3 vulnerabilities.

Sort current page

CVE-2023-27522HighCVSS7.5Published Mar 7, 2023

HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.

Affected vendor

apache

Affected product

http server

Coverage

3 affected product entries

CVSS

7.5

HIGH

Published

Mar 7, 2023

CVE-2018-7490HighCVSS7.5Published Feb 26, 2018

uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.

Affected vendor

unbit

Affected product

uwsgi

Coverage

3 affected product entries

CVSS

7.5

HIGH

Published

Feb 26, 2018

CVE-2018-6758CriticalCVSS9.8Published Feb 6, 2018

The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.

Affected vendor

unbit

Affected product

uwsgi

Coverage

Single affected product entry

CVSS

9.8

CRITICAL

Published

Feb 6, 2018