VYPR
Unrated severityNVD Advisory· Published Mar 8, 2015· Updated Jun 17, 2026

CVE-2015-0228

CVE-2015-0228

Description

The lua_websocket_read function in lua_request.c in the mod_lua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service (child-process crash) by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13

Patches

Vulnerability mechanics

References

28

News mentions

0

No linked articles in our index yet.