Vulnerabilities > Oisf > Libhtp
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-10 | CVE-2019-17420 | Incomplete Cleanup vulnerability in multiple products In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending. | 5.3 |
| 2019-04-04 | CVE-2018-10243 | Out-of-bounds Read vulnerability in Oisf Libhtp 0.5.26 htp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allows remote attackers to cause a heap-based buffer over-read via an authorization digest header. | 9.8 |
| 2017-08-28 | CVE-2015-0928 | NULL Pointer Dereference vulnerability in Oisf Libhtp 0.5.15 libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference). | 7.5 |