VYPR
High severity7.5NVD Advisory· Published Oct 12, 2019· Updated Jun 17, 2026

CVE-2019-17502

CVE-2019-17502

Description

Hydra through 0.1.8 has a NULL pointer dereference and daemon crash when processing POST requests that lack a Content-Length header. read.c, request.c, and util.c contribute to this. The process_header_end() function calls boa_atoi(), which ultimately calls atoi() on a NULL pointer.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Hydra/Hydradescription
  • Hydra/Hydrallm-fuzzy
    Range: <=0.1.8

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.