Vulnerabilities > Crowcpp > Crow > 1.0.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-22 | CVE-2022-38667 | Use After Free vulnerability in Crowcpp Crow HTTP applications (servers) based on Crow through 1.0+4 may allow a Use-After-Free and code execution when HTTP pipelining is used. | 9.8 |
| 2022-08-22 | CVE-2022-38668 | Use of Uninitialized Resource vulnerability in Crowcpp Crow 1.0+4 HTTP applications (servers) based on Crow through 1.0+4 may reveal potentially sensitive uninitialized data from stack memory when fulfilling a request for a static file smaller than 16 KB. | 7.5 |
| 2022-08-04 | CVE-2022-34970 | Off-by-one Error vulnerability in Crowcpp Crow Crow before 1.0+4 has a heap-based buffer overflow via the function qs_parse in query_string.h. | 9.8 |