lighttpd vulnerabilities

licenses detected

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the https://download.lighttpd.net|lighttpd package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Use After Free	[,1.4.50)
M Information Exposure	[0,)
M Denial of Service (DoS)	[1.4.56,1.4.67)
H NULL Pointer Dereference	[,1.4.66)
H Denial of Service (DoS)	[1.4.56,1.4.59)
M Out-of-Bounds	[,1.4.16)
H Directory Traversal	[,1.4.50)
M Resource Management Errors	[,1.4.26)
H Arbitrary Code Injection	[,1.4.36)
M Denial of Service (DoS)	[,1.4.20)[1.5,1.5.0)
M Resource Management Errors	[,1.4.32)
L Information Exposure	[1.0.2,1.4.8]
H Insecure Encryption	[1.4.24,1.4.34)
H Information Exposure	[,1.4.20)
M Denial of Service (DoS)	[,1.4.16)
H Denial of Service (DoS)	[,1.4.14)
H Information Exposure	[,1.4.20)
M Resource Management Errors	[,1.4.20)
M CVE-2006-0814	[1.0.2,1.4.10]
M Information Exposure	[,1.4.19)
H Access Restriction Bypass	[,1.4.33)
M Denial of Service (DoS)	[,1.4.16)
L Cryptographic Issues	[,1.4.28)
M Information Exposure	[,1.4.18]
M Denial of Service (DoS)	[,1.4.16)
M Denial of Service (DoS)	[,1.4.16)
M Use After Free	[,1.4.33)
H CVE-2007-3949	[,1.4.16)
C SQL Injection	[,1.4.35)
M Denial of Service (DoS)	[1.4.1,1.4.30)
M Resource Management Errors	[,1.5.0)
M Directory Traversal	[,1.4.35)
M Denial of Service (DoS)	[1.4.12,1.4.13]