Critical severity9.8NVD Advisory· Published Aug 4, 2022· Updated Jun 17, 2026
CVE-2022-34970
CVE-2022-34970
Description
Crow before 1.0+4 has a heap-based buffer overflow via the function qs_parse in query_string.h. On successful exploitation this vulnerability allows attackers to remotely execute arbitrary code in the context of the vulnerable service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
4- github.com/CrowCpp/Crow/pull/486nvdPatchThird Party Advisory
- github.com/0xhebi/CVE-2022-34970/blob/master/report.mdnvdExploitThird Party Advisory
- cwe.mitre.org/data/definitions/193.htmlnvdThird Party Advisory
- github.com/CrowCpp/Crow/releases/tag/v1.0%2B4nvdThird Party Advisory
News mentions
0No linked articles in our index yet.