High severity8.1NVD Advisory· Published Mar 15, 2018· Updated Jun 17, 2026
CVE-2018-8715
CVE-2018-8715
Description
The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c. With a forged HTTP request, it is possible to bypass authentication for the form and digest login types.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <7.0.3
Patches
Vulnerability mechanics
References
3- github.com/embedthis/appweb/issues/610nvdPatchThird Party Advisory
- blogs.securiteam.com/index.php/archives/3676nvdExploitThird Party Advisory
- security.paloaltonetworks.com/CVE-2018-8715nvd
News mentions
0No linked articles in our index yet.