handle_request in http.c in cherry through 4b877df has an...
Critical severity
Unreviewed
Published
Jan 5, 2024
to the GitHub Advisory Database
•
Updated Jan 20, 2024
Description
Published by the National Vulnerability Database
Jan 5, 2024
Published to the GitHub Advisory Database
Jan 5, 2024
Last updated
Jan 20, 2024
handle_request in http.c in cherry through 4b877df has an sscanf stack-based buffer overflow via a long URI, leading to remote code execution.
References