Vulnerabilities > Embedthis > Appweb > 4.7.3

DATE CVE VULNERABILITY TITLE RISK
2020-07-13 CVE-2020-15689 NULL Pointer Dereference vulnerability in Embedthis Appweb
Appweb before 7.2.2 and 8.x before 8.1.0, when built with CGI support, mishandles an HTTP request with a Range header that lacks an exact range.
network
low complexity
embedthis CWE-476
7.5
7.5
2018-08-18 CVE-2018-15505 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2.
network
low complexity
embedthis juniper CWE-476
7.5
7.5
2018-08-18 CVE-2018-15504 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2.
network
low complexity
embedthis juniper CWE-476
7.5
7.5
2018-03-15 CVE-2018-8715 Improper Authentication vulnerability in Embedthis Appweb
The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c.
network
embedthis CWE-287
6.8
6.8